โš™๏ธRoles

Default and Specific Roles

The role defines the permissions associated with the user. There are three default roles in SCAN:

Admin

Permissions :

*   // all permissions
Editor

Permissions :

cytoscape.viewAny
 
links.createFromJson
links.viewAny
links.create 
links.view 
links.update 
links.delete

person.fixDuplicatedReference
person.viewAny
person.create
person.view
person.update 
person.delete
person.createFromJson

user.requestRole
user.changeTeam
user.requestRole

lists_control.addToList

duplicate.viewAny
duplicate.create 
duplicate.view
duplicate.update 
duplicate.delete
Viewer

Permissions :

cytoscape.viewAny

person.viewAny
person.view

links.viewAny
links.view
Null

Permissions : 

ร˜

Each time you create a user, you assign him a role, which gives him the associated permissions.

In most cases, these roles are sufficient.

If you want a higher granularity, here is how to create new Roles (if not, you go skip this part and go to Teams) :

Permissions

A permission is defined according to the following format:

Notion.ActionNotion.Action

For instance, here is a common permission from our solution :

person.viewAny

The first part refers to the notion, here Person.

The second part refers to the desired action: here viewAny (= index)

If your User has a Role that count "person.index" in its permissions, then your user is able to index (view Any) the persons = acces the page /person

Here are the permissions given by the main action :

Action
Description

viewAny

Allow the user to index (view Any) all ressources of a given notion. E.g: the table showing all the people

view

Allow the user to view the detail of a given notion. E.g : view the detail of one person

create

Allow the user to create a new entity of a given notion. E.g : create a new person

update

Allow the user to edit an entity of a given notion. E.g : edit a person

delete

Allow the user to delete an entity of a given notion. E.g : delete a person

More specific action exists. They are detailled in the Actions permissions section

Creating a new Role

Please note that to access this page, you need the necessary permissions

To create a new role, go to the "Role" page in the "User Management" section :

Role index page (there are already the3 default roles)

By clicking on "New Role", you will be able to access the role creation page (i.e. associated to "role.create" permission) :

role creation page

On this page, you must associate a name to your new role, then check one by one all the permissions you want your role to have.

To help you, you also have "all" checkboxes, which allow you to check all the checkboxes of a category directly.

Beware, some permissions are implicitly linked, and if you don't check both, bugs may occur.

For example, if you check person.show but not person.index, your role will be able to inspect a particular person but will not be able to access the index page of all persons.

You can see a table of these linked permissions here :Implicitly linked actions

To save your role, just click on the Create button.

Did you remember to put a name ?

Create button (Use it to save your new role)

You can now see your new role in the list of existing roles. You can modify it by clicking on Edit, and even delete it with the Delete button.

New index of roles
show view of the New role (note the delete button)

The next page is about the implicitly linked permissions, if you are not interested you can go straight to Teams.

PreviousUsersNextPermissions

Last updated