Difference between revisions of "V2/Concepts/User"

From Senfi Docs
Jump to: navigation, search
 
(5 intermediate revisions by the same user not shown)
Line 1: Line 1:
=== Organization, User, Access Group === <!--T:28-->
+
<h1 class="main-heading">Understanding User Permissions</h1>
An organization represents the entity (eg. company, individual) that is responsible for managing the account that uses Senfi. An organization comprises at least one user with Administrator role. Users with Administrator role are able to manage other users, including user account creation/deletion, user roles etc.
 
  
<!--T:29-->
+
To protect the data on Senfi, anyone who wishes to access the Senfi CMS or Digital Twin will need to login before he/she can enjoy Senfi's services. This section aims to help you understand user permissions in Senfi for better data and users organization. Data access in Senfi are organized into:
Think of access group as a subset of the assets under the organization. Users can be placed into access groups to have access to those assets. Currently assets that can be assigned to an access group are:
+
* [[V2/Concepts/User/Organization|Organization]]
* user
+
* [[V2/Concepts/User/User|User]]
* site
+
* [[V2/Concepts/User/Role|Role]]
* rule
+
* [[V2/Concepts/User/Access_Group|Access Group]]
 
 
<translate>
 
<!--T:1-->
 
The term '''User''' in this documentation refers to someone who uses Senfi. Users are created within the [[Concepts#Organization, User, Access Group|organization]] in Senfi. User can be assigned to one or more [[Access_Group|access groups]].
 
 
 
=== Role === <!--T:2-->
 
Within an organization, roles are created for various job functions. The permissions to perform certain actions are assigned to specific roles. A role can be assigned to one or several users, and each user can only have one role.
 
 
 
<!--T:3-->
 
The actions that can be assigned to a role are:</translate>
 
{| class="wikitable"
 
|
 
!colspan=7|Action
 
|-
 
!Task
 
!<translate><!--T:4--> Manage User</translate>
 
!<translate><!--T:5--> Manage Site</translate>
 
!<translate><!--T:6--> Manage Lift</translate>
 
!<translate><!--T:7--> Manage Measurement</translate>
 
!<translate><!--T:8--> Manage Rule</translate>
 
!<translate><!--T:9--> Manage Access Group</translate>
 
!<translate><!--T:10--> Can Integrate</translate>
 
|-
 
!<translate><!--T:11--> Add User</translate>
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:12--> Update User</translate>
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:13--> Delete User</translate>
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:14--> Add Site</translate>
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:15--> Update Site</translate>
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:16--> Delete Site</translate>
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:17--> Add Lift</translate>
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:18--> Update Lift</translate>
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:19--> Delete Lift</translate>
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|
 
|-
 
!<translate><!--T:20--> Add Measurement</translate>
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|-
 
!<translate><!--T:21--> Update Measurement</translate>
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|-
 
!<translate><!--T:22--> Delete Measurement</translate>
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|
 
|-
 
!<translate><!--T:23--> Add Rule</translate>
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|-
 
!<translate><!--T:24--> Update Rule</translate>
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|-
 
!<translate><!--T:25--> Delete Rule</translate>
 
|
 
|
 
|
 
|
 
|style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|
 
|-
 
!<translate><!--T:26--> Add Access Group</translate>
 
|
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|-
 
!<translate><!--T:27--> Update Access Group</translate>
 
|
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|-
 
!<translate><!--T:28--> Delete Access Group</translate>
 
|
 
|
 
|
 
|
 
|
 
|style="text-align: center; background-color: green; color: white;"|Y
 
|
 
|-
 
!<translate><!--T:29--> Add API Key</translate>
 
|
 
|
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|-
 
!<translate><!--T:30--> Delete API Key</translate>
 
|
 
|
 
|
 
|
 
|
 
|
 
| style="text-align: center; background-color: green; color: white;"|Y
 
|-
 
!<translate><!--T:31--> Check Debugger</translate>
 
|
 
|
 
|
 
|
 
|
 
|
 
|style="text-align: center; background-color: green; color: white;"|Y
 
|-
 
!<translate><!--T:32--> Check Inspector</translate>
 
|
 
|
 
|
 
|
 
|
 
|
 
|style="text-align: center; background-color: green; color: white;"|Y
 
|}
 
<translate>
 
<!--T:33-->
 
Each [[Concepts#Organization, User, Access Group|organization]] has a default role called '''Administrator''' that can perform all actions. The Administrator role cannot be edited or deleted, and there must be at least one user in an organization with the Administrator role.
 
 
 
<!--T:34-->
 
[[File:Org_role_actions.png|center|thumb|700px|Example of Organization, Role & Actions|link=]]
 
 
 
<!--T:35-->
 
Users with the Administrator role are able to manage other roles.
 
</translate>
 
<div class="important"><translate><!--T:36--> Note: If user A has role B, and role B is deleted, user A will be assigned an empty role and will no longer be allowed to login. The Administrator or someone who can manage users will need to assign a new role for user A before he/she can login.</translate></div>
 
 
 
<div class="right"><translate><!--T:37--> [[Access_Group|Next: Access Group]]</translate></div>
 
 
 
<translate>
 
<!--T:1-->
 
As pointed out in [[Concepts#Organization, User, Access Group|general concepts]], access group is a subset of the assets under the organization that users under the access group can access.
 
 
 
<!--T:2-->
 
Currently assets that can be assigned to an access group are:
 
* user
 
* site
 
* rule
 
 
 
<!--T:3-->
 
Each '''organization''' has default access group called '''All (<organization's Name>)'''. By default, the following assets will be assigned to the default access group:
 
* Users with Administrator role
 
* All of the sites under the organization
 
* All of the rules under the organization
 
 
 
<!--T:4-->
 
Access group can be nested and users of top level access group have access to all of the assets that belong to access groups under top level access group.
 
 
 
<!--T:5-->
 
[[File:Access_group_w_legend.png|frame|Nested Access Group Example|link=]]
 
 
 
<!--T:6-->
 
For example: '''Asia''' access group have access to all of the assets of '''Toa Payoh''' access group.
 
</translate>
 

Latest revision as of 12:19, 2 July 2021

Understanding User Permissions

To protect the data on Senfi, anyone who wishes to access the Senfi CMS or Digital Twin will need to login before he/she can enjoy Senfi's services. This section aims to help you understand user permissions in Senfi for better data and users organization. Data access in Senfi are organized into:

Retrieved from "https://www.senfi.io/docs/index.php?title=V2/Concepts/User&oldid=3123"