RichTextEditor allows developers to assign a pre-defined set of permissions by group or individual. This prevents a normal user to access the administration functionality. The details of permissions are specified by an XML security policy file. Each level maps to a specific file. The default mappings:
You can customize and extend each policy file by editing the XML security policy file. You can also create your own policy files that define arbitrary permission sets. Comparison of the sample security policy file