We recently have a client request for SharePoint OOTB Permission Matrix. We thought it would be available easily. But to my surprise, we didn't. Although, Microsoft has put a full page on that but we can't give that to client.
So I have prepared this matrix comparing things in Microsoft blog. You can find the blog link in reference:
Permission level | ||||||||||||
Permission | Permission Description | View
Only |
Limited
Access |
Restricted
Read |
Read | Contribute | Edit | Approve | Design | Manage
Hierarchy |
Full
Control |
|
List Level | ||||||||||||
Manage List | Create and delete lists, add or remove columns in a list, and add or remove public views of a list. | Yes | Yes | Yes | Yes | |||||||
Overrise List Behavior | Discard or check in a document that is checked out to another user, and change or override settings that allow users to read/edit only their own items | Yes | Yes | Yes | Yes | |||||||
Add Items | Add items to lists, and add documents to document libraries | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Edit Items | Edit items in lists, edit documents in document libraries, and customize Web Part pages in document libraries | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Delete Items | Delete items from a list, and documents from a document library. | Yes | Yes | Yes | Yes | Yes | Yes | |||||
View Items | View items in lists, and documents in document libraries | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Approve Items | Approve a minor version of list items or document. | Yes | Yes | Yes | ||||||||
Open Items | View the source of documents with server-side file handlers | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | |||
View Versions | View past versions of a list item or document. | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | |||
Delete Versions | Delete past versions of list items or documents. | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Create Alerts | Create alerts | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||||
View Application Pages | View forms, views, and application pages. Enumerate lists | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | |
Site Permission | ||||||||||||
Manage Permissions | Create and change permission levels on the web site and assign permissions to users and groups | Yes | Yes | |||||||||
View Web Analytics Data | View reports on Web site usage | Yes | Yes | |||||||||
Create Subsites | Create subsites such as team sites, Meeting Workspace sites, and Document Workspace sites. | Yes | Yes | |||||||||
Manage Web Site | Grants the ability to perform all administration tasks for the web site, as well as manage content | Yes | Yes | |||||||||
Add and Customize Pages | Add, change, or delete HTML pages or Web Part pages, and edit the website. | Yes | Yes | Yes | ||||||||
Apply Themes and Borders | Apply a theme or borders to the whole website. | Yes | Yes | Yes | ||||||||
Apply Style Sheets | Apply a style sheet (.css file) to the website. | Yes | Yes | Yes | ||||||||
Create Groups | Create a group of users that can be used anywhere within the site collection | Yes | ||||||||||
Browse Directories | Enumerate files and folders in a website by using SharePoint Designer 2013 and Web DAV interfaces | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Use Self-Service Site Creation | Create a website using Self-Service Site Creation. | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | |||
View Pages | View pages in a website | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Enumerate Permissions | Enumerate permissions on the website, list, folder, document, or list item | Yes | Yes | |||||||||
Browse User Information | View information about users of the website | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Manage Alerts | Manage alerts for all users of the website | Yes | Yes | |||||||||
Use Remote Interfaces | Use SOAP, Web DAV, the Client Object Model, or SharePoint Designer 2013 interfaces to access the website | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Use Client Integration Features | Use features that launch client applications. Without this permission, users must work on documents locally and then upload their changes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | ||
Open | Enables users to open a website, list, or folder to access items inside that container | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes | |
Edit Personal User Information | Enables users to change their own user information, such as adding a picture. | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Personal | ||||||||||||
Manage Personal Views | Create, change, and delete personal views of lists. | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Add/Remove Personal Web Parts | Add or remove personal Web Parts on a Web Part page. | Yes | Yes | Yes | Yes | Yes | Yes | |||||
Update Personal Web Parts | Update Web Parts to display personalized information | Yes | Yes | Yes | Yes | Yes | Yes | |||||
|
||||||||||||
Note: Restricted Read, Approve and Manage Heirarchy Permission are available for Publishing Site only.
Reference:
- https://docs.microsoft.com/en-us/sharepoint/sites/user-permissions-and-permission-levels