PERMISSION BUNDLE

Pimcore Permission Bundle: Advanced Permission Management

Manage granular Pimcore permissions and access control per role and workflow state independently, without turning routine updates into development tasks. The Factory Permission Bundle adds a structured permission layer on top of Pimcore’s native system

01

REPLACE CUSTOM PERMISSION ENGINEERING

  • Avoid building separate layouts per role and workflow state.
  • Eliminate repeated development for attribute-level access logic.
  • Drastically reduce implementation time. From ~100 custom development hours to just a few hours of setup.
02

GAIN GRANULAR WORKFLOW-BASED CONTROL

  • Define visibility and edit rights per individual attribute.
  • Apply permissions inside Classification Stores and Field Collections.
  • Control who can edit specific attributes at each workflow stage.
03

ENABLE SCALABLE PERMISSION GOVERNANCE

  • Update permissions directly in Pimcore or via structured Excel import.
  • Generate permission entries for newly added attributes or classes with just one click in the interface.
  • Reduce recurring development work for routine permission changes.

MOVE ROUTINE PERMISSION UPDATES OUT OF DEVELOPMENT AND INTO CONTROLLED CONFIGURATION.

DESIGNED TO WORK WITH PIMCORE, NOT AROUND IT

The Factory Permission Bundle adds attribute-level permission control to Pimcore environments where standard role-based access and custom layouts are no longer sufficient. Permissions can be defined per attribute, per role, and per workflow state, including attributes inside Classification Stores and Field Collections.

Instead of maintaining large sets of custom layouts and additional permission logic, permissions are managed directly in the Pimcore backend or through structured Excel import and export. In projects with complex permission requirements, this can reduce implementation effort from extensive development work to a few hours of structured setup.

Cover image of permission bundle by Factory representing different permission levels.

PERMISSION BUNDLE FEATURES OVERVIEW

ATTRIBUTE-LEVEL ACCESS CONTROL

- Define view and edit rights per individual attribute across Pimcore object classes

- Configure permissions per role and per workflow state

WORKFLOW-STATE-BASED PERMISSIONS

- Ensure editing rights change correctly between Draft, Enrichment, Active, and other lifecycle stages

CLASSIFICATION STORE SUPPORT

- Apply granular permissions to attributes inside Classification Stores without duplicating layouts or writing additional logic

FIELD COLLECTION SUPPORT

- Manage visibility and edit rights for attributes inside Field Collections using the same structured permission model

USER-BASED PERMISSION REPORTING

- Generate a report that displays all configured attribute permissions for a specific user

- Review access rights across roles and workflow states

- Improve transparency and governance in complex environment

PERMISSION MANAGEMENT INTERFACE

- Manage all attribute access rules through a structured backend interface

EXCEL EXPORT AND IMPORT

- Export permission rules into predefined Excel templates for review and bulk updates.

- Import changes back into Pimcore in a controlled and traceable way

PERMISSION ENTRY GENERATION

- Quickly generate permission entries for newly added attributes or classes with just one click in the interface.

BACKWARD-COMPATIBLE INTEGRATION

- Built on Pimcore’s native role and permission system

- Does not introduce a parallel permission model

- Can only further restrict access, never elevate it

- Works alongside existing custom layouts

BOOK A DEMO

WHO THE PERMISSION BUNDLE IS FOR

Illustration representing developer setup and configuration of Pimcore permissions

DEVELOPERS

Developers perform the initial setup, synchronize workflow states via CLI, and configure service overrides when required. After installation, the bundle integrates with Pimcore’s existing permission system. Maintenance is only needed when workflow definitions or system structure change.

Illustration representing permission management inside Pimcore

PIMCORE USERS

Authorized users create and update permission rule objects, define which roles can view or edit attributes across workflow states, and generate permission reports for governance or review. No development knowledge is required.

Illustration representing user roles and permission governance

NON-PIMCORE USERS

Permissions can be exported to Excel, edited using simple values such as DENIED, SEE, or EDIT, and imported back into the system for structured updates. This allows business and data governance stakeholders to participate in permission management without technical involvement.

PIMCORE PERMISSION BUNDLE

LICENSING AND PRICING

  • License valid per organization (no user or device limits)
  • Includes updates, maintenance, and standard support
  • Annual fee: €1,800
  • Installation and configuration service available on request (with additional cost).
GET THE PERMISSION BUNDLE
Pimcore permission bundle interface showing generation of an attribute permission report for a selected class.
Exporting Pimcore attribute permissions for a data object class including workflows, states, and access rules.
Importing attribute permissions into Pimcore using an XLSX file through the permission bundle interface.
Editing attribute access rules in Pimcore to control which user roles can view specific object attributes.
Pimcore attribute permission actions menu showing options to export, import, generate reports, and create permissions.
Generating missing attribute permissions for Pimcore data object classes
Pimcore permission bundle generation summary showing created attribute permission entries.
Pimcore grid interface for searching, editing, and exporting attribute permissions across object attributes.
Console command syncing Pimcore workflow states to automatically create attribute permission entries.

LET’S SHOW YOU HOW THE BUNDLE WORKS IN PRACTICE.

See how complex permission setups move from weeks of custom development to just hours of configuration.

FAQ

PIMCORE PERMISSION BUNDLE FAQ

What does the Factory Permission Bundle add to Pimcore’s native permission system?

The Factory Permission Bundle extends Pimcore’s default permission system with more granular control over users, roles, attributes, and workflow states. It enables structured access management across complex data models and workflows.

Technically, the bundle integrates directly with Pimcore’s native permission layer without modifying core files. It hooks into the existing authorization logic and applies additional validation rules during read and write operations.

Can permissions be managed per workflow state and across multiple workflows?

Yes. Permissions can be configured per workflow state, allowing different access rights depending on the current lifecycle stage of an object. The bundle also supports environments with multiple workflows and provides a clear overview of permissions across all configured workflows.

Can permissions be controlled at attribute level?

Yes. The bundle allows granular permission management at attribute level, giving administrators precise control over what users can view or edit.

Is it compatible with Pimcore Enterprise and Community Edition?

Yes. The bundle is compatible with both Pimcore Community and Enterprise Editions (depending on the supported version range).

Does it impact system performance?

No. The bundle follows Pimcore best practices and is designed to integrate cleanly into the existing architecture without negatively affecting performance.

Is technical knowledge required to configure permissions?

No advanced development knowledge is required. Permissions can be configured directly in the Pimcore admin interface or managed through an Excel file that can be exported, edited, and imported back into Pimcore. A user guide is included with the bundle to support administrators during setup and ongoing permission management. This allows technical administrators and power users to manage permissions without development involvement.

Can the bundle help with compliance and data governance?

Yes. By defining clear access rules and restricting unauthorized changes, the bundle supports better governance, auditability, and compliance processes.

Is the installation complex?

No. Installation follows standard Pimcore bundle installation procedures. An installation guide is included with the bundle to support the setup process.

Installation and configuration services are available on request for an additional cost.

Does it override or replace Pimcore core permissions?

No. It builds on top of Pimcore’s default permission system. Core permissions remain active, while the bundle adds additional granular controls and validation layers.

At which levels can permissions be applied?

Permissions can be applied at:

  • Role level
  • Workflow state level
  • Object and class level
  • Attribute (field) level

This allows highly granular access control tailored to complex business logic.

How are workflow-based permissions technically handled?

The bundle evaluates the current workflow state of an object during permission checks. Based on configured rules, access is granted or denied dynamically per state.

Is the bundle API-compatible?

Yes. Permission rules also apply to API-based interactions (REST, DataHub, custom endpoints), ensuring consistent access control across backend and integrations.

Can permissions be exported or audited?

Yes. Permission matrices can be exported into a predefined Excel template that includes attributes, roles, and workflow states. The file can be reviewed and edited in Excel, then imported back into Pimcore to apply the updated permission rules. This enables structured audits and easier governance in complex environments

Does it support custom Pimcore data models?

Yes. The bundle is data-model agnostic and works with custom classes, field collections, and object structures.

Does the bundle support Classification Stores and Field Collections?

Yes. The bundle allows granular permission control for attributes inside Classification Stores and Field Collections, which are difficult to manage using standard layouts alone.

Is the bundle extensible?

Yes. Developers can extend or customize the permission logic using Pimcore events, service decoration, or custom business logic layers if needed.

What happens when new attributes are added?

When new attributes or classes are introduced, permission entries can be generated with one click in the interface. Administrators can then configure the access rules without rebuilding custom layouts or writing additional logic.