Granting Users Access to Your Coveo Components

You typically create and customize your Coveo components while they’re accessible only to Salesforce administrators. Once a component is ready for your production environment, you must make it accessible to appropriate Salesforce users.

Granting Users Access to Your Coveo for Salesforce Search Page

Similarly, if you create a new Salesforce page to host a customized Coveo-powered search page, you also need to grant appropriate Salesforce users access to your custom Salesforce page.

To grant Salesforce users access to your Coveo for Salesforce search page:

  1. Log in to your Salesforce organization using an Administrator account.

  2. On the User menu in the upper-right corner, click setup cog icon and select Setup.

  3. In the navigation bar on the left, search for and select Visualforce Pages.

    With Salesforce Lightning With Salesforce Classic
    Under Platform Tools, select Custom Code > Visualforce Pages. Under Build, select Develop> Visualforce Pages.
  4. On the Visualforce Pages page, on the line for your standard search page (such as Search, MobileSearch, and CommunitySearch) or custom search page, click Security.

  5. On the Enable Profile Access for Visualforce Page page for your custom page, in the Available Profiles list, select the profile(s) corresponding to the users that must have access to the Coveo-powered search page, and add them to the Enabled Profiles list.

    1022-enable-profile

  6. Click Save.

Granting Users Access to Your Coveo Lightning Components

You will typically want certain user profiles to have access to your community components.

  1. Log in to your Salesforce organization using an Administrator account.

  2. On the User menu in the upper-right corner, click setup cog icon and select Setup.

  3. Make the Coveo Lightning components fields available to your desired profiles:

    1. In the navigation bar on the left, search for and select Field Accessibility.

      With Salesforce Lightning With Salesforce Classic
      Under Settings, select Security > Field Accessibility. Under App Setup, select Administer > SecurityControls > Field Accessibility.
    2. On the Field Accessibility page, select Coveo Lightning Settings.

    3. On the Field Accessibility Coveo Lightning Settings page, click View by Profiles, and then select the profile that should have access to your Coveo Lightning components.

    4. Ensure that the profile has at least Read-Only access to all fields.

    5. Repeat these steps for every profile that should have access to the Coveo Lightning components.

  4. Allow your users access to the Coveo Lightning settings:

    1. In Setup, search for and select Profiles.

      With Salesforce Lightning With Salesforce Classic
      Under Administration, select Users > Profiles. Under Administer, select ManageUsers > Profiles.
    2. On the Profiles page, click Edit next to the profile that should have access to your Coveo Lightning components.

    3. Under Custom Objects Permission, next to Coveo Lightning Settings, ensure that the profile has at least Read access.

    4. Repeat these steps for every profile that should have access to the Coveo Lightning components.

  5. Assign the Coveo User permission set to each user who should have access to the Coveo Lightning components (see Assign Permission Sets to a Single User).

    If you’re running a Coveo for Salesforce package that’s older than v3.43, you must create a permission set to grant users access to the Coveo Apex Classes and then assign this permission set to the Guest User Profile. For more information, see the related Knowledge Base (KB) article.

    If you don’t grant your users access to the Coveo Lightning components, they will receive the following error when trying to view the component:

     Insufficient read access to the Coveo Lightning Configuration object
    

Grant Anonymous Users Access to Your Community

You will sometimes want to have a public community that can welcome guest users. Therefore, you must ensure that guest users can access your components once they’re ready.

To enable the settings for your guest users to have access to your Coveo Lightning components, you must perform the following tasks:

Edit the Experience Management Administration Settings

  1. Access the Salesforce Experience Management.

  2. In My Workspaces, select Administration.

  3. Under Administration, select Preferences.

  4. Ensure that the Give access to public API requests on Chatter and Show all settings in Workspaces boxes are selected.

  5. Under Administration, select Members.

  6. Ensure all the profiles and permission sets that should be able to access your community are in the Selected Permission Sets section.

Edit the Experience Builder Settings

  1. Access the Salesforce Experience Builder.

  2. In the left sidebar, click Cogwheel icon to access the Settings menu.

  3. In the General tab, ensure that the Public can access the site check box is selected.

Edit the Guest User Profile

  1. Access the Salesforce Experience Builder.

  2. In the left sidebar, click Cogwheel icon to access the Settings menu.

  3. In the General tab, under Guest User Profile, click the guest user profile associated to your community.

  4. On the guest user Profile page:

    1. Scroll to the Field-Level Security section.

    2. Under Custom Field-Level Security, next to Coveo Lightning Settings, click View.

  5. On the Coveo Lightning Settings Field-Level Security for profile page, ensure that the guest user profile has at least Read Access to the Configuration and Site Name fields.

  6. Click Back to Profile to return to the guest user profile.

  7. Under Custom Object Permissions, ensure that the profile has at least Read access to the Coveo Lightning Settings.

  8. Scroll back to the top of the Profile page.

  9. In the Profile Detail section, click View Users.

  10. On the Profile page that appears, click Site Guest User.

  11. On the Site Guest User page, in the Permission Set Assignments section, click Edit Assignments.

  12. On the Permission Set Assignments page, in the Available Permission Sets list, select Coveo User and add it to the Enabled Permission Sets list.

    If you’re running a Coveo for Salesforce package that’s older than v3.43, you must create a permission set to grant users access to the Coveo Apex Classes and then assign this permission set to the Guest User Profile. For more information, see the related Knowledge Base (KB) article.

  13. Click Save.

    The Coveo User permission is now assigned to the Guest User Profile.

Your guest users should now have access to your Coveo Lightning components in your community.

Granting Salesforce Users Access to the Coveo Insight Panel Classic Component

After installing the Coveo for Salesforce application and following the recommendation to set the security level to grant access to admins only (see Installing the Coveo for Salesforce Application), your normal Salesforce users don’t yet have access to the Coveo Insight Panel Classic Component.

Once you have completed the setup of the Coveo Insight Panel Classic Component and want to make it available to your Salesforce users, you must allow them to see it.

To grant Salesforce users access to the Coveo Insight Panel Classic Component

  1. Log in to your Salesforce organization using an Administrator account.

  2. Grant user profiles access to the Coveo Insight Panel Classic Component.

    There are two ways to grant your users access to the Coveo Insight Panel Classic Component depending on the number of profiles within your organization:

    • Profile permissions on Visualforce pages: This method is more efficient when you have less than six user profiles.

      Edit each profile permission at once to allow users under these profiles to access the Coveo Insight Panel Classic Component (see Grant a Profile Access to the Coveo Insight Panel Classic Component).

    • Visualforce pages permissions on profiles: This method is more efficient when you have more than six profiles.

      Set the Coveo Insight Panel Classic Component (Visualforce pages) to be only accessible by the user profiles you want (see Edit Visualforce Page Permissions).

Grant a Profile Access to the Coveo Insight Panel Classic Component

  1. Access the Profiles page:

    1. In the User menu, select Setup.

    2. In the navigation bar on the left, under Administration Setup, select Manage Users> Profiles.

  2. On the Profiles page, click the profile name to which you want to grant access to the Coveo Insight Panel Classic Component.

  3. On the Profile Edit page, in the Enabled Visualforce Page Access section, click Edit.

  4. On the Enable Visualforce Page Access page:

    1022-visualforce-page-access

    1. In the Available Visualforce Pages list, select CoveoV2.CoveoPanelForCases.

    2. Click Add to make it appear in the Enabled Visualforce Pages list.

    3. Click Save.

  5. Repeat this procedure for each profile to which you want to grant access the Coveo Insight Panel Classic Component.

Edit Visualforce Page Permissions

  1. In the navigation bar on the left, under App Setup, select Develop> Pages.

  2. On the Visualforce Pages page, in the Action column, click the Security link on the line on which PanelForCases is in the Name column.

  3. In the Enable Profile Access for Visualforce Page:

    1022-enable-profile-edit-section

    1. In the Available Profiles list, select one or more profile to which you want to grant access to the PanelForCases page.

    2. Click Add to make it appear in the Enabled Profiles list.

    3. Click Save.

Granting Access to Attach to Case Users

Coveo for Salesforce V3 and V4 come with a component to allow Salesforce users such as support agents to attach a search result to a Salesforce object such as a case. These users must, however, have Read, Create, Edit, and Delete permissions on the Attached Results object to be able to use the Attach to Case feature.

To grant access to Attach to Case users

  1. Log in to your Salesforce organization using an Administrator account.

  2. In Salesforce, select Setup > Manage Users > Profiles.

  3. On the Profiles page, click Edit next to a profile that requires access to the Attached Results.

  4. In the selected Profile Edit page, under Custom Object Permissions, for the Attached Results object, under Basic Access, select the Read, Create, Edit, and Delete check boxes, and then click Save.

    When your Salesforce organization uses the enhanced profile user interface (see Working with Object Settings in the Enhanced Profile User Interface), on the selected Profile Edit page, instead:

    1. Under Apps, click Object Settings.

    2. In the All Object Settings list, click the Attached Results object.

    3. In the Attached Results Object Permissions list, in the Enabled column, select the check box for the Read, Create, and Edit lines, and then click Save.