0

I will be making demo version of Magento for a showcase. I want to give users admin credentials so they can see what Magento's administration has to offer.

a) Am I exposing server to some kind of security threat? I know that you can upload extensions through admin panel.

b) Users will click anything, I am sure of that. So I will make a cronjob to override database and files with backup in a certain time period.

I am not sure what kind of Magento user roles are, I need to look into it, maybe I can find a solution.

What is your opinion? Thank you in advance.

Karthik Rangarajan
  • 1,370
  • 8
  • 12
be-codified
  • 5,704
  • 18
  • 41
  • 65
  • 2
    Restrict the admin features accessible to the users by creating the different user and assigning the role.Do not give the full access to the users to all the resources under System>Permissions >Roles. – Mukesh Feb 27 '15 at 16:23

1 Answers1

2

The best way is to create a new user and provide it with the permission to limited access. If you are not familiar to magento's user roles then this will be the best place to look for.

I suggest you to backup your database for the safety.

Hope this will help.

Navin Bista
  • 1,988
  • 2
  • 21
  • 37