Got it π PrestaShop Roles, Profiles & Permissions can feel confusing at first, so letβs break it down cleanly and practically (PrestaShop 1.7 & 8.x).
π PrestaShop Roles, Profiles & Permissions (Explained Simply)
1οΈβ£ What is a Profile?
A Profile = a user role in the Back Office.
Examples:
- SuperAdmin β Full access
- Administrator β Almost full access
- Salesman β Orders & customers
- Translator β Translations only
- Logistician β Stock & carriers
π One employee = one profile
2οΈβ£ What is a Role / Permission?
A Role defines what a profile can do for each menu or module.
For every section, you can allow:
- π View
- β Add
- βοΈ Edit
- π Delete
3οΈβ£ Where to Manage Profiles?
Back Office β Advanced Parameters β Team β Profiles
Default Profiles
| Profile | Typical Access |
|---|---|
| SuperAdmin | Everything |
| Administrator | Almost everything |
| Salesman | Orders, Customers |
| Logistician | Stock, Carriers |
| Translator | Translations |
| Read only | View only |
4οΈβ£ Create a Custom Profile (Best Practice)
Example: βOrder Managerβ
- Go to Team β Profiles
- Click Add new profile
- Name it β
Order Manager - Save
5οΈβ£ Set Permissions (Very Important Step!)
Menu Permissions
Team β Permissions
- Select the Profile
- Configure permissions for:
- Catalog
- Orders
- Customers
- Modules
- Design
- International
- Advanced Parameters
Example:
| Section | View | Add | Edit | Delete |
|---|---|---|---|---|
| Orders | β | β | β | β |
| Customers | β | β | β | β |
| Modules | β | β | β | β |
π Tip: Start with View only, then allow more.
6οΈβ£ Module Permissions (Often Missed!)
Some modules have their own permissions.
π Path:
Team β Permissions β Modules
You can allow:
- View
- Configure
- Uninstall
Example:
- Sales team β Configure orders module
- Tech team β Configure payment modules
7οΈβ£ Assign Profile to Employees
- Go to Team β Employees
- Add / Edit employee
- Select Profile
- Save
π€ Employee is now restricted correctly
8οΈβ£ Customer Groups (Different from Profiles!)
β οΈ Important: Customer groups β Employee profiles
Customer Groups:
Shop Parameters β Customer Settings β Groups
Examples:
- Visitor
- Guest
- Customer
- VIP / Wholesale
Used for:
- Discounts
- Prices
- Shipping rules
- Visibility
β They do NOT affect Back Office access
9οΈβ£ Real-World Recommended Setup
πΉ Store Owner
- Profile: SuperAdmin
πΉ Order Processing Staff
- Profile: Custom (Orders + Customers only)
πΉ Content Manager
- Profile: Custom (CMS, Products, Images)
πΉ Developer
- Profile: Admin (No orders/customers)
π Security Best Practices π
- Never give SuperAdmin to everyone
- Disable Modules access for non-tech staff
- Use Read-only for auditors
- Change default admin URL
- Enable 2FA (if module available)
β οΈ Common Mistakes
β Giving module access accidentally
β Forgetting module permissions
β Confusing customer groups with employee profiles
Β