Administrators can use the Security tab to create new roles and apply them to security settings on objects. When a role is added at a particular point in an object hierarchy, it is made available for use at that point and below. Zope has pre-defined roles that have either a special meaning or a conventional usage. These roles are:
Anonymous -- All users, including users that do not supply authentication credentials. Giving a permission to the Anonymous role makes the corresponding operations publicly accessible.
Manager -- By convention, the Manager role is assigned to users with responsibility for managing a Zope website or portions of a website. By default, all permissions associated with modifying Zope objects are given to the Manger role.
Owner -- When an object is created, the user who created it is given a local role of Owner. By default, the Owner role has the same permissions as the Manager role.