diff --git a/src/css/main.css b/src/css/main.css
index 9320a5b6..a563ae92 100644
--- a/src/css/main.css
+++ b/src/css/main.css
@@ -243,11 +243,15 @@ kbd {
   .site-nav__item a:focus, .site-nav__item--active a:focus, .site-nav__item a:hover, .site-nav__item--active a:hover {
     background: #2E9625;
     color: #F2F4F0; }
+  .site-nav__item a.disabled, .site-nav__item--active a.disabled {
+    color: #2E9625;
+    pointer-events: none;
+    cursor: default; }
 
 .site-nav__item--active a {
   background: #2E9625;
   color: #FFFFFF; }
-  .site-nav__item--active a:focus, .site-nav__item--active a:hover {
+  .site-nav__item--active a:focus, .site-nav__item--active a:hover, .site-nav__item--active a.disabled {
     background: #2E9625;
     color: #FFFFFF; }
 
diff --git a/src/js/config/routes.js b/src/js/config/routes.js
index d47d7be2..b8fc3def 100644
--- a/src/js/config/routes.js
+++ b/src/js/config/routes.js
@@ -16,8 +16,11 @@ define(['es-ui'], function (app) {
             .state('app', {
                 url: '/',
                 templateUrl: 'index.tpl.html',
-                abstract: true
-                //controller: ['$state']
+                abstract: true,
+                controller: ['$scope', function($scope) {
+                    $scope.notAdminMessage = 'You must be an admin to view this item';
+                    $scope.projectionsNotRunningMessage = 'Projections are not running on Event Store';
+                }]
             });
     }]);
 });
\ No newline at end of file
diff --git a/src/js/modules/projections/controllers/ProjectionsItemDebugCtrl.js b/src/js/modules/projections/controllers/ProjectionsItemDebugCtrl.js
index 67d6051a..cbe866e5 100644
--- a/src/js/modules/projections/controllers/ProjectionsItemDebugCtrl.js
+++ b/src/js/modules/projections/controllers/ProjectionsItemDebugCtrl.js
@@ -261,6 +261,14 @@ define(['./_module'], function (app) {
 				    msg.failure('projection could not be stopped');
 				});
 		    };
+
+		    $scope.goBack = function() {
+		    	if($stateParams.fromQueryState) {
+		    		$state.go('query', {location: $scope.location});
+		    	} else {
+		    		$state.go('^.details');
+		    	}
+		    }
 		}
     ]);
 });
diff --git a/src/js/modules/projections/controllers/QueryCtrl.js b/src/js/modules/projections/controllers/QueryCtrl.js
index 0e688195..150f10a4 100644
--- a/src/js/modules/projections/controllers/QueryCtrl.js
+++ b/src/js/modules/projections/controllers/QueryCtrl.js
@@ -6,10 +6,16 @@ define(['./_module'], function (app) {
     // todo: remove State Params if we will not add query for existing queries
 
     return app.controller('QueryCtrl', [
-		'$scope', '$state', '$stateParams', 'QueryService', 'ProjectionsMonitor', 'MessageService',
-		function ($scope, $state, $stateParams, queryService, monitor, msg) {
+		'$scope', '$state', '$stateParams', 'QueryService', 'ProjectionsMonitor', 'MessageService','ProjectionsService',
+		function ($scope, $state, $stateParams, queryService, monitor, msg, projectionsService) {
 
 			var location;
+			if ($stateParams.location) {
+				location = $stateParams.location;
+                projectionsService.query(location).then(function (result) {
+	                $scope.query = result.data.query
+                });
+			}
 
 			function create () {
 				var param = {
@@ -38,7 +44,7 @@ define(['./_module'], function (app) {
 					ignoreQuery: true,
 					ignoreResult: true
 				}).then(null, null, function (data) {
-					var s, stopped;
+					var projection, status, stateReason, stopped;
 
 					if(data.state) {
 						$scope.state = data.state;
@@ -48,10 +54,13 @@ define(['./_module'], function (app) {
 					}
 					
 					if(data.statistics && data.statistics.projections.length) {
-						s = data.statistics.projections[0].status;
-						$scope.status = s;
-
-						stopped = (!!~s.indexOf('Stopped') && !~s.indexOf('Preparing')) || !!~s.indexOf('Faulted') ||!!~s.indexOf('Completed');
+						projection = data.statistics.projections[0];
+						status = projection.status;
+						stateReason = projection.stateReason;
+						$scope.status = status;
+						var lines = stateReason.match(/[^\r\n]+/g);
+						$scope.stateReason = lines !== null && lines.length > 0 ? lines[0] : stateReason;
+						stopped = (!!~status.indexOf('Stopped') && !~status.indexOf('Preparing')) || !!~status.indexOf('Faulted') ||!!~status.indexOf('Completed');
 						$scope.isStopped = stopped;
 					}
 				});
@@ -134,7 +143,8 @@ define(['./_module'], function (app) {
                     queryService.reset(location)
                     .then(function onQueryReset(){
                         $state.go('projections.item.debug', {
-                            location: encodeURIComponent(location)
+                            location: encodeURIComponent(location),
+                            fromQueryState : true
                         }, { 
                             inherit: false 
                         });
diff --git a/src/js/modules/projections/module.js b/src/js/modules/projections/module.js
index 5d60a225..5ec7432c 100644
--- a/src/js/modules/projections/module.js
+++ b/src/js/modules/projections/module.js
@@ -66,7 +66,7 @@ define(['./_index'], function (app) {
                 }
             })
             .state('projections.item.debug', {
-                url: '/debug',
+                url: '/debug?fromQueryState',
                 templateUrl: 'projections.item.debug.tpl.html',
                 controller: 'ProjectionsItemDebugCtrl',
                 data: {
@@ -84,7 +84,7 @@ define(['./_index'], function (app) {
 
             // ========================================QUERY============
             .state('query', {
-                url: 'query',
+                url: 'query?location',
                 parent: 'app',
                 templateUrl: 'query.tpl.html',
                 controller: 'QueryCtrl',
diff --git a/src/js/modules/projections/templates/templates.js b/src/js/modules/projections/templates/templates.js
index 9b457e29..90c93f19 100644
--- a/src/js/modules/projections/templates/templates.js
+++ b/src/js/modules/projections/templates/templates.js
@@ -6,7 +6,7 @@ try {
 }
 module.run(['$templateCache', function($templateCache) {
   $templateCache.put('projections.item.debug.tpl.html',
-    '<header class=page-header><h2 class=page-title>Projection Debug</h2><ul class=page-nav><li class=page-nav__item><button ng-click=runStep() ng-disabled=isRunning>Run Step</button></li><li class=page-nav__item><button ng-click=stop() ng-disabled=!isRunning>Stop</button></li><li class=page-nav__item><button ng-click=update() ng-disabled=isUpdating>Update</button></li><li class=page-nav__item><a ui-sref=^.details>Back</a></li></ul></header><h3>Current Status: <small>{{statusInfo}}</small></h3><div class=container><div class=container-left><h3 class=block-title>Source</h3><div ng-show=queryUpdated><h4>The query has been updated but not saved. Your changes will not take effect until you hit the "Update" button</h4></div><div ui-ace=aceConfig ng-model=query></div></div><div class=container-right><h3 class=block-title>State {{ currentPartition }}</h3><pre>\n' +
+    '<header class=page-header><h2 class=page-title>Projection Debug</h2><ul class=page-nav><li class=page-nav__item><button ng-click=runStep() ng-disabled=isRunning>Run Step</button></li><li class=page-nav__item><button ng-click=stop() ng-disabled=!isRunning>Stop</button></li><li class=page-nav__item><button ng-click=update() ng-disabled=isUpdating>Update</button></li><li class=page-nav__item><a ng-click=goBack()>Back</a></li></ul></header><h3>Current Status: <small>{{statusInfo}}</small></h3><div class=container><div class=container-left><h3 class=block-title>Source</h3><div ng-show=queryUpdated><h4>The query has been updated but not saved. Your changes will not take effect until you hit the "Update" button</h4></div><div ui-ace=aceConfig ng-model=query></div></div><div class=container-right><h3 class=block-title>State {{ currentPartition }}</h3><pre>\n' +
     '{{ state | json }}\n' +
     '				</pre><h3 class=block-title>Events</h3><div ui-ace=aceEventsConfig readonly=true ng-model=events></div></div></div><div class=container><div class=container-left><div class=block><h3 class=block-title>Instructions</h3><ol><li>Make sure you use the Google Chrome browser.</li><li>Open a debugger (<kbd>Ctrl</kbd>+<kbd>Shift</kbd>+<kbd>J</kbd> on Windows).</li><li>Check the debugger console for errors (occurred while running the projection definition on while loading state and events).</li><li>Click the ‘Run’ button above.</li><li>Watch for errors in the debugger console</li><li>Check the debugging status on XXXXXXXXX.</li><li>Execution will stop on ‘debugger’ statement immediately before invoking your event handler.</li></ol><p>Any log output and emitted events will appear in the log viewer.</p></div></div><div class=container-right><h3 class=block-title>Log Viewer</h3><div es-proj-debug-frame es-location=location></div></div></div>');
 }]);
@@ -126,7 +126,7 @@ try {
 }
 module.run(['$templateCache', function($templateCache) {
   $templateCache.put('query.tpl.html',
-    '<header class=page-header><h2 class=page-title>Query</h2><ul class=page-nav><li class=page-nav__item><button ng-click=run()>Run</button></li><li class=page-nav__item><button ng-click=stop() ng-disabled=disableStop()>Break</button></li><li class=page-nav__item><button ng-click=debug() ng-disabled=!isCreated>Debug</button></li></ul></header><h3 ng-visible=status>{{status}}</h3><div class=container><div class=container-left><h3 class=block-title>Source</h3><div ui-ace=aceConfig ng-model=query></div></div><div class=container-right><h3 class=block-title>State</h3><pre>\n' +
+    '<header class=page-header><h2 class=page-title>Query</h2><ul class=page-nav><li class=page-nav__item><button ng-click=run()>Run</button></li><li class=page-nav__item><button ng-click=stop() ng-disabled=disableStop()>Break</button></li><li class=page-nav__item><button ng-click=debug() ng-disabled=!isCreated>Debug</button></li></ul></header><h3 ng-visible=status>{{status}}<br></h3><i>{{stateReason}}</i><div class=container><div class=container-left><h3 class=block-title>Source</h3><div ui-ace=aceConfig ng-model=query></div></div><div class=container-right><h3 class=block-title>State</h3><pre>\n' +
     '{{state | json}}\n' +
     '		</pre></div></div>');
 }]);
diff --git a/src/js/modules/projections/views/projections.item.debug.tpl.html b/src/js/modules/projections/views/projections.item.debug.tpl.html
index ac765713..82b26229 100644
--- a/src/js/modules/projections/views/projections.item.debug.tpl.html
+++ b/src/js/modules/projections/views/projections.item.debug.tpl.html
@@ -14,7 +14,7 @@ <h2 class="page-title">Projection Debug</h2>
 				<li class="page-nav__item">
 					<button ng-click="update()" ng-disabled="isUpdating">Update</button>
 				</li>
-				<li class="page-nav__item"><a ui-sref="^.details">Back</a></li>
+				<li class="page-nav__item"><a ng-click="goBack()">Back</a></li>
 			</ul>
 		</header>
 
diff --git a/src/js/modules/projections/views/query.tpl.html b/src/js/modules/projections/views/query.tpl.html
index 221c4ca1..86c1f9b3 100644
--- a/src/js/modules/projections/views/query.tpl.html
+++ b/src/js/modules/projections/views/query.tpl.html
@@ -15,8 +15,9 @@ <h2 class="page-title">Query</h2>
 		</header>
 
 		<h3 ng-visible="status">
-			{{status}}
+			{{status}}<br/>
 		</h3>
+		<i>{{stateReason}}</i>
 
 		<div class="container">
 			<div class="container-left">
diff --git a/src/js/modules/security/controllers/SignInCtrl.js b/src/js/modules/security/controllers/SignInCtrl.js
index 75b0248b..56f8c9db 100644
--- a/src/js/modules/security/controllers/SignInCtrl.js
+++ b/src/js/modules/security/controllers/SignInCtrl.js
@@ -29,16 +29,23 @@ define(['./_module'], function (app) {
                     $rootScope.esVersion = $rootScope.esVersion  == '0.0.0.0' ? 'development build' : $rootScope.esVersion;
                     $rootScope.projectionsAllowed = info.projectionsMode != 'None';
                     $rootScope.projectionsMode = info.projectionsMode;
-                    scavengeNotificationService.start();
-					authService.setCredentials($scope.log.username, $scope.log.password, $scope.log.server);
-                    infoService.getOptions().then(function onGetOptions(response){
-                        var options = response.data;
-                        for (var index in options) {
-                            if(options[index].name == "ClusterSize" && options[index].value > 1){
-                                $rootScope.singleNode = false;
-                            }
-                        }
-						redirectAfterLoggingIn();
+
+                    authService.getUserGroups($scope.log.username).then(function(groups) {
+						authService.setCredentials($scope.log.username, $scope.log.password, $scope.log.server, groups);
+						if($rootScope.isAdmin) {
+	                    	scavengeNotificationService.start();
+		                    infoService.getOptions().then(function onGetOptions(response){
+		                        var options = response.data;
+		                        for (var index in options) {
+		                            if(options[index].name == "ClusterSize" && options[index].value > 1){
+		                                $rootScope.singleNode = false;
+		                            }
+		                        }
+								redirectAfterLoggingIn();
+		                    });
+	                	} else {
+	                		redirectAfterLoggingIn();
+	                	}
                     });
 				})
 				.error(function () {
diff --git a/src/js/modules/streams/controllers/StreamsListCtrl.js b/src/js/modules/streams/controllers/StreamsListCtrl.js
index 98d7d84f..ad020ee9 100644
--- a/src/js/modules/streams/controllers/StreamsListCtrl.js
+++ b/src/js/modules/streams/controllers/StreamsListCtrl.js
@@ -3,8 +3,8 @@ define(['./_module'], function (app) {
     'use strict';
 
     return app.controller('StreamsListCtrl', [
-		'$scope', '$state', 'StreamsService',
-		function ($scope, $state, streamsService) {
+		'$rootScope', '$scope', '$state', 'StreamsService', 'MessageService',
+		function ($rootScope, $scope, $state, streamsService, msg) {
 			
 			function filter (entries) {
 				var filtered = {}, i = 0, length = entries.length, item, result = [];
@@ -23,26 +23,32 @@ define(['./_module'], function (app) {
 				return result;
 			}
 
-			$scope.search = '$all';
-
 			$scope.gotoStream = function ($event) {
 				$event.preventDefault();
 				$event.stopPropagation();
 
-				// todo: do check if stream exists
-
-				$state.go('^.item.events', { streamId: $scope.search });
+				streamsService.checkStreamExists($scope.search).then(function(exists) {
+					if(exists) {
+						$state.go('^.item.events', { streamId: $scope.search });
+					} else {
+						msg.warn('Could not open stream ' + $scope.search +'. This usually means the stream does not exist or you do not have permission to view it');
+					}
+				});
 			};
 
-			streamsService.recentlyChangedStreams()
-			.success(function (data) {
-				$scope.changedStreams = filter(data.entries);
-			});
-
-			streamsService.recentlyCreatedStreams()
-			.success(function (data) {
-				$scope.createdStreams = filter(data.entries);
-			});
+			if($rootScope.isAdmin !== false) {
+				$scope.search = '$all';
+			
+				streamsService.recentlyChangedStreams()
+				.success(function (data) {
+					$scope.changedStreams = filter(data.entries);
+				});
+
+				streamsService.recentlyCreatedStreams()
+				.success(function (data) {
+					$scope.createdStreams = filter(data.entries);
+				});
+			}
 		}
 	]);
 });
diff --git a/src/js/modules/streams/services/StreamsService.js b/src/js/modules/streams/services/StreamsService.js
index a7623b89..af58b6e3 100644
--- a/src/js/modules/streams/services/StreamsService.js
+++ b/src/js/modules/streams/services/StreamsService.js
@@ -75,6 +75,16 @@ define(['./_module'], function(app) {
                         };
 
                         return $http.get(url, header);
+                    },
+                    checkStreamExists: function(streamId) {
+                        var deferred = $q.defer();
+                        var url = urlBuilder.build(urls.streams.events, streamId);
+                        $http.get(url).success(function() {
+                            deferred.resolve(true);
+                        }).error(function() {
+                            deferred.resolve(false);
+                        });
+                        return deferred.promise;
                     }
                 };
             }
diff --git a/src/js/modules/streams/templates/templates.js b/src/js/modules/streams/templates/templates.js
index 34a0ca74..0c430990 100644
--- a/src/js/modules/streams/templates/templates.js
+++ b/src/js/modules/streams/templates/templates.js
@@ -54,7 +54,7 @@ try {
 }
 module.run(['$templateCache', function($templateCache) {
   $templateCache.put('streams.item.tpl.html',
-    '<header class=page-header><h2 class=page-title>Event Stream \'{{ streamId }}\'</h2><ul class=page-nav><li class=page-nav__item><a ng-class="{highlight: isPolling == false}" ng-click=togglePause() ng-show=headOfStream>{{ isPolling == true ? \'Pause\' : \'Resume\' }}</a></li><li class=page-nav__item><a ui-sref=.acl ng-show="streamId !== \'$all\'">Edit ACL</a></li><li class=page-nav__item><a ui-sref=^.list>Back</a></li></ul></header><ul style="list-style-type: none; padding:0 0 0.75rem 0 !important"><li class=page-nav__item ng-repeat="link in links"><a ng-href={{link.uri}}>{{ link.relation }}</a></li></ul><br><div ui-view es-link-header></div>');
+    '<header class=page-header><h2 class=page-title>Event Stream \'{{ streamId }}\'</h2><ul class=page-nav><li class=page-nav__item><a ng-class="{highlight: isPolling == false}" ng-click=togglePause() ng-show=headOfStream>{{ isPolling == true ? \'Pause\' : \'Resume\' }}</a></li><li class=page-nav__item><a ui-sref=.acl ng-show="streamId !== \'$all\' && isAdmin">Edit ACL</a></li><li class=page-nav__item><a ui-sref=^.list>Back</a></li></ul></header><ul style="list-style-type: none; padding:0 0 0.75rem 0 !important"><li class=page-nav__item ng-repeat="link in links"><a ng-href={{link.uri}}>{{ link.relation }}</a></li></ul><br><div ui-view es-link-header></div>');
 }]);
 })();
 
@@ -66,7 +66,7 @@ try {
 }
 module.run(['$templateCache', function($templateCache) {
   $templateCache.put('streams.list.tpl.html',
-    '<header class=page-header><h2 class=page-title>Stream Browser</h2><ul class=page-nav><li class=page-nav__item><form><input ui-keypress="{\'enter\': \'gotoStream($event)\'}" ng-model="search"></form></li></ul></header><div class=container><div class=container-left><table><thead><tr><th>Recently Created Streams</th></tr></thead><tbody><tr ng-repeat="stream in createdStreams"><td><a ui-sref="^.item.events({streamId: stream.streamId})">{{ stream.streamId }}</a></td></tr><tr ng-hide=createdStreams><td><em>No recently created streams</em></td></tr></tbody></table></div><div class=container-right><table><thead><tr><th>Recently Changed Streams</th></tr></thead><tbody><tr ng-repeat="stream in changedStreams"><td><a ui-sref="^.item.events({streamId: stream.streamId})">{{ stream.streamId }}</a></td></tr><tr ng-hide=changedStreams><td><em>No recently changed streams</em></td></tr></tbody></table></div></div>');
+    '<header class=page-header><h2 class=page-title>Stream Browser</h2><ul class=page-nav><li class=page-nav__item><form><input ui-keypress="{\'enter\': \'gotoStream($event)\'}" ng-model=search placeholder="Search for stream"></form></li></ul></header><div ng-if=isAdmin class=container><div class=container-left><table><thead><tr><th>Recently Created Streams</th></tr></thead><tbody><tr ng-repeat="stream in createdStreams"><td><a ui-sref="^.item.events({streamId: stream.streamId})">{{ stream.streamId }}</a></td></tr><tr ng-hide=createdStreams><td><em>No recently created streams</em></td></tr></tbody></table></div><div class=container-right><table><thead><tr><th>Recently Changed Streams</th></tr></thead><tbody><tr ng-repeat="stream in changedStreams"><td><a ui-sref="^.item.events({streamId: stream.streamId})">{{ stream.streamId }}</a></td></tr><tr ng-hide=changedStreams><td><em>No recently changed streams</em></td></tr></tbody></table></div></div><em ng-if=!isAdmin>You must be an admin to view recently created streams</em>');
 }]);
 })();
 
diff --git a/src/js/modules/streams/views/streams.item.tpl.html b/src/js/modules/streams/views/streams.item.tpl.html
index f5682584..4fcec399 100644
--- a/src/js/modules/streams/views/streams.item.tpl.html
+++ b/src/js/modules/streams/views/streams.item.tpl.html
@@ -5,7 +5,7 @@ <h2 class="page-title">Event Stream '{{ streamId }}'</h2>
 			<a ng-class="{highlight: isPolling == false}" ng-click="togglePause()" ng-show="headOfStream">{{ isPolling == true ? 'Pause' : 'Resume' }}</a>
 		</li>
 		<li class="page-nav__item">
-			<a ui-sref=".acl" ng-show="streamId !== '$all'">Edit ACL</a>
+			<a ui-sref=".acl" ng-show="streamId !== '$all' && isAdmin">Edit ACL</a>
 		</li>
 		<li class="page-nav__item">
 			<a ui-sref="^.list">Back</a>
diff --git a/src/js/modules/streams/views/streams.list.tpl.html b/src/js/modules/streams/views/streams.list.tpl.html
index 7c0e85e5..d4cba5d3 100644
--- a/src/js/modules/streams/views/streams.list.tpl.html
+++ b/src/js/modules/streams/views/streams.list.tpl.html
@@ -5,12 +5,12 @@ <h2 class="page-title">Stream Browser</h2>
 	<ul class="page-nav">
 		<li class="page-nav__item">
 			<form>
-				<input type="text" ui-keypress="{'enter': 'gotoStream($event)'}" ng-model="search" />
+				<input type="text" ui-keypress="{'enter': 'gotoStream($event)'}" ng-model="search" placeholder="Search for stream"/>
 			</form>
 		</li>
 	</ul>
 </header>
-<div class="container">
+<div ng-if="isAdmin" class="container">
 	<div class="container-left">
 		<table>
 			<thead>
@@ -56,3 +56,4 @@ <h2 class="page-title">Stream Browser</h2>
 		</table>
 	</div>
 </div>
+<em ng-if="!isAdmin">You must be an admin to view recently created streams</em>
diff --git a/src/js/run.js b/src/js/run.js
index 8fcfb3ec..a170ca0f 100644
--- a/src/js/run.js
+++ b/src/js/run.js
@@ -30,15 +30,17 @@ define(['es-ui'], function (app) {
                         $rootScope.esVersion = $rootScope.esVersion  == '0.0.0.0' ? 'development build' : $rootScope.esVersion;
                         $rootScope.projectionsAllowed = info.projectionsMode != 'None';
                         $rootScope.projectionsMode = info.projectionsMode;
-                        scavengeNotificationService.start();
-                        infoService.getOptions().then(function onGetOptions(response){
-                            var options = response.data;
-                            for (var index in options) {
-                                if(options[index].name == "ClusterSize" && options[index].value > 1){
-                                    $rootScope.singleNode = false;
+                        if($rootScope.isAdmin) {
+                            scavengeNotificationService.start();
+                            infoService.getOptions().then(function onGetOptions(response){
+                                var options = response.data;
+                                for (var index in options) {
+                                    if(options[index].name == "ClusterSize" && options[index].value > 1){
+                                        $rootScope.singleNode = false;
+                                    }
                                 }
-                            }
-                        });
+                            });
+                        }
                     });
             }, function () {
                 $rootScope.previousUrl = $location.$$path;
diff --git a/src/js/services/AuthService.js b/src/js/services/AuthService.js
index 9bfc244c..990e3338 100644
--- a/src/js/services/AuthService.js
+++ b/src/js/services/AuthService.js
@@ -12,7 +12,8 @@ define(['./_module'], function (app) {
 		'$rootScope',
 		'$location',
 		'urls',
-		function (Base64, $q, $cookieStore, $http, $rootScope, $location, urls) {
+		'UrlBuilder',
+		function (Base64, $q, $cookieStore, $http, $rootScope, $location, urls, urlBuilder) {
 			// initialize to whatever is in the cookie, if anything
 			// i know, hoising, but i don't like jshint warnings
 			var currentUrl = $location.host() + ':' + $location.port();
@@ -25,6 +26,14 @@ define(['./_module'], function (app) {
 				return escreds.servers[server].credentials;
 			}
 
+			function getGroupsFromCookie(server){
+				var escreds = $cookieStore.get('es-creds');
+				if(!escreds || !escreds.servers[server]){
+					return null;
+				}
+				return escreds.servers[server].groups;
+			}
+
 			function clearCredentials(server){
 	            document.execCommand('ClearAuthenticationCache');
 		        $http.defaults.headers.common.Authorization = 'Basic ';
@@ -35,7 +44,7 @@ define(['./_module'], function (app) {
 	            }
 			}
 
-			function addCredentialsToCookie(server, username, password){
+			function addCredentialsToCookie(server, username, password, groups){
 				var escreds = $cookieStore.get('es-creds');
 				if(!escreds){
 					escreds = {
@@ -43,7 +52,8 @@ define(['./_module'], function (app) {
 					}
 				}
 				escreds.servers[server] = {
-					credentials : Base64.encode(username + ':' + password)
+					credentials : Base64.encode(username + ':' + password),
+					groups : groups
 				}
 				$cookieStore.put('es-creds', escreds);
 			}
@@ -52,6 +62,14 @@ define(['./_module'], function (app) {
 				$rootScope.baseUrl = url;
 			}
 
+			function setUserAdmin(groups) {
+				$rootScope.isAdmin = false;
+				if(groups && groups.length > 0)
+				{
+            		$rootScope.isAdmin = groups.indexOf('$admins') > -1;
+            	}
+			}
+
 			var escreds = getCredentialsFromCookie(currentUrl);
 			if(escreds) {
 				setBaseUrl(currentUrl);
@@ -72,14 +90,16 @@ define(['./_module'], function (app) {
 
 
 		    return {
-		        setCredentials: function (username, password, server) {
+		        setCredentials: function (username, password, server, groups) {
 		            var credentials = Base64.encode(username + ':' + password);
+		            
 		            $http.defaults.headers.common.Authorization = 'Basic ' + credentials;
 
 		            server = prepareUrl(server);
 		            setBaseUrl(server);
+		            setUserAdmin(groups);
 
-		            addCredentialsToCookie(server, username, password);
+		            addCredentialsToCookie(server, username, password, groups);
 		        },
 		        clearCredentials: function () {
 		            clearCredentials($rootScope.baseUrl);
@@ -92,6 +112,8 @@ define(['./_module'], function (app) {
 		        	} else {
 		        		this.validate(credentials, server)
 		        		.success(function() {
+		        			var groups = getGroupsFromCookie(server);
+		        			setUserAdmin(groups);
 		        			deferred.resolve();
 		        		})
 		        		.error(function (){
@@ -136,6 +158,14 @@ define(['./_module'], function (app) {
 		        			Authorization: 'Basic ' + credentials
 		        		}
 		        	});
+		        },
+		        getUserGroups: function(username) {
+		        	var deferred = $q.defer();
+	        		$http.get(urlBuilder.build(urls.users.get, username)).success(function(userInfo) {
+		            	var groups = userInfo.data.groups;
+		            	deferred.resolve(groups);
+	            	});
+	            	return deferred.promise;
 		        }
 		    };
 		}
diff --git a/src/js/templates/templates.js b/src/js/templates/templates.js
index 0a9030d6..5fa30d59 100644
--- a/src/js/templates/templates.js
+++ b/src/js/templates/templates.js
@@ -18,7 +18,7 @@ try {
 }
 module.run(['$templateCache', function($templateCache) {
   $templateCache.put('index.tpl.html',
-    '<header class=site-header><h1 class=site-title><a href=#><img src=images/logo.svg height=29 width=119 alt="Event Store"></a></h1><ul class=site-nav><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'dashboard\') }"><a ui-sref=dashboard.list>Dashboard</a></li><li ng-if=!singleNode class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'clusterstatus\') }"><a ui-sref=clusterstatus.list>Cluster Status</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'streams\') }"><a ui-sref=streams.list>Stream Browser</a></li><li ng-if=projectionsAllowed class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'projections\') }"><a ui-sref=projections.list>Projections</a></li><li ng-if=projectionsAllowed class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'query\') }"><a ui-sref=query>Query</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'competing\') }"><a ui-sref=subscriptions.list>Competing Consumers</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'admin\') }"><a ui-sref=admin>Admin</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'users\') }"><a ui-sref=users.list>Users</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'signout\') }"><a ui-sref=signout>Log Out</a></li></ul></header><main class=site-main><div ui-view></div></main><footer class=site-footer><p>Event Store {{ esVersion }} &middot; <a href="http://geteventstore.com/docs/" target=_blank>Documentation</a> &middot; <a href="http://geteventstore.com/support/" target=_blank>Support</a></p></footer>');
+    '<header class=site-header><h1 class=site-title><a href=#><img src=images/logo.svg height=29 width=119 alt="Event Store"></a></h1><ul class=site-nav><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'dashboard\') }"><a ui-sref=dashboard.list>Dashboard</a></li><li ng-if=!singleNode class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'clusterstatus\') }"><a ui-sref=clusterstatus.list>Cluster Status</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'streams\') }"><a ui-sref=streams.list>Stream Browser</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'projections\') }" title="{{!isAdmin ? notAdminMessage : !projectionsAllowed ? projectionsNotRunningMessage : \'\'}}"><a ng-class="{\'disabled\': !projectionsAllowed || !isAdmin}" ui-sref=projections.list>Projections</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'query\') }" title="{{!projectionsAllowed ? projectionsNotRunningMessage : \'\'}}"><a ng-class="{\'disabled\':!projectionsAllowed}" ui-sref=query>Query</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'competing\') }" title="{{!isAdmin ? notAdminMessage : \'\'}}"><a ng-class="{\'disabled\': !isAdmin}" ui-sref=subscriptions.list>Competing Consumers</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'admin\') }" title="{{!isAdmin ? notAdminMessage : \'\'}}"><a ng-class="{\'disabled\': !isAdmin}" ui-sref=admin>Admin</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'users\') }" title="{{!isAdmin ? notAdminMessage : \'\'}}"><a ng-class="{\'disabled\': !isAdmin}" ui-sref=users.list>Users</a></li><li class=site-nav__item ng-class="{\'site-nav__item--active\': $state.includes(\'signout\') }"><a ui-sref=signout>Log Out</a></li></ul></header><main class=site-main><div ui-view></div></main><footer class=site-footer><p>Event Store {{ esVersion }} &middot; <a href="http://geteventstore.com/docs/" target=_blank>Documentation</a> &middot; <a href="http://geteventstore.com/support/" target=_blank>Support</a></p></footer>');
 }]);
 })();
  });
\ No newline at end of file
diff --git a/src/scss/_module-siteheader.scss b/src/scss/_module-siteheader.scss
index 134da736..325fc4e4 100644
--- a/src/scss/_module-siteheader.scss
+++ b/src/scss/_module-siteheader.scss
@@ -51,6 +51,11 @@
 			background: $green-dark;
 			color: $white-off;
 		}
+		&.disabled {
+			color:$green-dark;
+			pointer-events:none;
+			cursor:default;
+		}
 	}
 }
 
@@ -59,7 +64,7 @@
 	a {
 		background: $green-dark;
 		color: $white;
-		&:focus, &:hover {
+		&:focus, &:hover, &.disabled {
 			background: $green-dark;
 			color: $white;
 		}
diff --git a/src/views/index.tpl.html b/src/views/index.tpl.html
index 04bb59cb..84acddc8 100644
--- a/src/views/index.tpl.html
+++ b/src/views/index.tpl.html
@@ -15,20 +15,20 @@ <h1 class="site-title">
 			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('streams') }">
 				<a ui-sref="streams.list">Stream Browser</a>
 			</li>
-			<li ng-if="projectionsAllowed" class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('projections') }">
-				<a ui-sref="projections.list">Projections</a>
+			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('projections') }" title="{{!isAdmin ? notAdminMessage : !projectionsAllowed ? projectionsNotRunningMessage : ''}}">
+				<a ng-class="{'disabled': !projectionsAllowed || !isAdmin}" ui-sref="projections.list">Projections</a>
 			</li>
-			<li ng-if="projectionsAllowed" class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('query') }">
-				<a ui-sref="query">Query</a>
+			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('query') }" title="{{!projectionsAllowed ? projectionsNotRunningMessage : ''}}">
+				<a ng-class="{'disabled':!projectionsAllowed}" ui-sref="query">Query</a>
 			</li>
-			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('competing') }">
-				<a ui-sref="subscriptions.list">Competing Consumers</a>
+			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('competing') }" title="{{!isAdmin ? notAdminMessage : ''}}">
+				<a ng-class="{'disabled': !isAdmin}" ui-sref="subscriptions.list">Competing Consumers</a>
 			</li>
-			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('admin') }">
-				<a ui-sref="admin">Admin</a>
+			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('admin') }" title="{{!isAdmin ? notAdminMessage : ''}}">
+				<a ng-class="{'disabled': !isAdmin}" ui-sref="admin">Admin</a>
 			</li>
-			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('users') }">
-				<a ui-sref="users.list">Users</a>
+			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('users') }" title="{{!isAdmin ? notAdminMessage : ''}}">
+				<a ng-class="{'disabled': !isAdmin}" ui-sref="users.list">Users</a>
 			</li>
 			<li class="site-nav__item" ng-class="{'site-nav__item--active': $state.includes('signout') }">
 				<a ui-sref="signout">Log Out</a>