|
|
(2 intermediate revisions by the same user not shown) |
Line 1: |
Line 1: |
| <h1 class="main-heading">Understanding User Permissions</h1> | | <h1 class="main-heading">Understanding User Permissions</h1> |
| | | |
− | [[V2/Concepts/User/Organization|Organization]] | + | To protect the data on Senfi, anyone who wishes to access the Senfi CMS or Digital Twin will need to login before he/she can enjoy Senfi's services. This section aims to help you understand user permissions in Senfi for better data and users organization. Data access in Senfi are organized into: |
− | | + | * [[V2/Concepts/User/Organization|Organization]] |
− | [[V2/Concepts/User/User|User]] | + | * [[V2/Concepts/User/User|User]] |
− | | + | * [[V2/Concepts/User/Role|Role]] |
− | [[V2/Concepts/User/Role|Role]] | + | * [[V2/Concepts/User/Access_Group|Access Group]] |
− | | |
− | [[V2/Concepts/User/Access_Group|Access Group]] | |
− | | |
− | === Organization, User, Access Group === <!--T:28-->
| |
− | An organization represents the entity (eg. company, individual) that is responsible for managing the account that uses Senfi. An organization comprises at least one user with Administrator role. Users with Administrator role are able to manage other users, including user account creation/deletion, user roles etc.
| |
− | | |
− | <!--T:29-->
| |
− | Think of access group as a subset of the assets under the organization. Users can be placed into access groups to have access to those assets. Currently assets that can be assigned to an access group are:
| |
− | * user
| |
− | * site
| |
− | * rule
| |
− | | |
− | <translate>
| |
− | <!--T:1-->
| |
− | The term '''User''' in this documentation refers to someone who uses Senfi. Users are created within the [[Concepts#Organization, User, Access Group|organization]] in Senfi. User can be assigned to one or more [[Access_Group|access groups]].
| |
− | | |
− | === Role === <!--T:2-->
| |
− | Within an organization, roles are created for various job functions. The permissions to perform certain actions are assigned to specific roles. A role can be assigned to one or several users, and each user can only have one role.
| |
− | | |
− | <!--T:3-->
| |
− | The actions that can be assigned to a role are:</translate>
| |
− | {| class="wikitable"
| |
− | |
| |
− | !colspan=7|Action
| |
− | |-
| |
− | !Task
| |
− | !<translate><!--T:4--> Manage User</translate>
| |
− | !<translate><!--T:5--> Manage Site</translate>
| |
− | !<translate><!--T:6--> Manage Lift</translate>
| |
− | !<translate><!--T:7--> Manage Measurement</translate>
| |
− | !<translate><!--T:8--> Manage Rule</translate>
| |
− | !<translate><!--T:9--> Manage Access Group</translate>
| |
− | !<translate><!--T:10--> Can Integrate</translate>
| |
− | |-
| |
− | !<translate><!--T:11--> Add User</translate>
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:12--> Update User</translate>
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:13--> Delete User</translate>
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:14--> Add Site</translate>
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:15--> Update Site</translate>
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:16--> Delete Site</translate>
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:17--> Add Lift</translate>
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:18--> Update Lift</translate>
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:19--> Delete Lift</translate>
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:20--> Add Measurement</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:21--> Update Measurement</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:22--> Delete Measurement</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:23--> Add Rule</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:24--> Update Rule</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:25--> Delete Rule</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:26--> Add Access Group</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:27--> Update Access Group</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:28--> Delete Access Group</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |style="text-align: center; background-color: green; color: white;"|Y
| |
− | |
| |
− | |-
| |
− | !<translate><!--T:29--> Add API Key</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |-
| |
− | !<translate><!--T:30--> Delete API Key</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | | style="text-align: center; background-color: green; color: white;"|Y
| |
− | |-
| |
− | !<translate><!--T:31--> Check Debugger</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |style="text-align: center; background-color: green; color: white;"|Y
| |
− | |-
| |
− | !<translate><!--T:32--> Check Inspector</translate>
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |
| |
− | |style="text-align: center; background-color: green; color: white;"|Y
| |
− | |}
| |
− | <translate>
| |
− | <!--T:33-->
| |
− | Each [[Concepts#Organization, User, Access Group|organization]] has a default role called '''Administrator''' that can perform all actions. The Administrator role cannot be edited or deleted, and there must be at least one user in an organization with the Administrator role.
| |
− | | |
− | <!--T:34-->
| |
− | [[File:Org_role_actions.png|center|thumb|700px|Example of Organization, Role & Actions|link=]]
| |
− | | |
− | <!--T:35-->
| |
− | Users with the Administrator role are able to manage other roles.
| |
− | </translate>
| |
− | <div class="important"><translate><!--T:36--> Note: If user A has role B, and role B is deleted, user A will be assigned an empty role and will no longer be allowed to login. The Administrator or someone who can manage users will need to assign a new role for user A before he/she can login.</translate></div>
| |
− | | |
− | <div class="right"><translate><!--T:37--> [[Access_Group|Next: Access Group]]</translate></div>
| |