Difference between revisions of "V2/Concepts/User"

From Senfi Docs
Jump to: navigation, search
Line 2: Line 2:
  
 
[[V2/Concepts/User/Organization|Organization]]
 
[[V2/Concepts/User/Organization|Organization]]
 +
 
[[V2/Concepts/User/User|User]]
 
[[V2/Concepts/User/User|User]]
 +
 
[[V2/Concepts/User/Role|Role]]
 
[[V2/Concepts/User/Role|Role]]
 +
 
[[V2/Concepts/User/Access_Group|Access Group]]
 
[[V2/Concepts/User/Access_Group|Access Group]]
  
Line 248: Line 251:
  
 
<div class="right"><translate><!--T:37--> [[Access_Group|Next: Access Group]]</translate></div>
 
<div class="right"><translate><!--T:37--> [[Access_Group|Next: Access Group]]</translate></div>
 
<translate>
 
<!--T:1-->
 
As pointed out in [[Concepts#Organization, User, Access Group|general concepts]], access group is a subset of the assets under the organization that users under the access group can access.
 
 
<!--T:2-->
 
Currently assets that can be assigned to an access group are:
 
* user
 
* site
 
* rule
 
 
<!--T:3-->
 
Each '''organization''' has default access group called '''All (<organization's Name>)'''. By default, the following assets will be assigned to the default access group:
 
* Users with Administrator role
 
* All of the sites under the organization
 
* All of the rules under the organization
 
 
<!--T:4-->
 
Access group can be nested and users of top level access group have access to all of the assets that belong to access groups under top level access group.
 
 
<!--T:5-->
 
[[File:Access_group_w_legend.png|frame|Nested Access Group Example|link=]]
 
 
<!--T:6-->
 
For example: '''Asia''' access group have access to all of the assets of '''Toa Payoh''' access group.
 
</translate>
 

Revision as of 11:15, 2 July 2021

Understanding User Permissions

Organization

User

Role

Access Group

Organization, User, Access Group

An organization represents the entity (eg. company, individual) that is responsible for managing the account that uses Senfi. An organization comprises at least one user with Administrator role. Users with Administrator role are able to manage other users, including user account creation/deletion, user roles etc.

Think of access group as a subset of the assets under the organization. Users can be placed into access groups to have access to those assets. Currently assets that can be assigned to an access group are:

  • user
  • site
  • rule

The term User in this documentation refers to someone who uses Senfi. Users are created within the organization in Senfi. User can be assigned to one or more access groups.

Role

Within an organization, roles are created for various job functions. The permissions to perform certain actions are assigned to specific roles. A role can be assigned to one or several users, and each user can only have one role.

The actions that can be assigned to a role are:

Action
Task Manage User Manage Site Manage Lift Manage Measurement Manage Rule Manage Access Group Can Integrate
Add User Y
Update User Y
Delete User Y
Add Site Y
Update Site Y
Delete Site Y
Add Lift Y
Update Lift Y
Delete Lift Y
Add Measurement Y
Update Measurement Y
Delete Measurement Y
Add Rule Y
Update Rule Y
Delete Rule Y
Add Access Group Y
Update Access Group Y
Delete Access Group Y
Add API Key Y
Delete API Key Y
Check Debugger Y
Check Inspector Y

Each organization has a default role called Administrator that can perform all actions. The Administrator role cannot be edited or deleted, and there must be at least one user in an organization with the Administrator role.

Example of Organization, Role & Actions

Users with the Administrator role are able to manage other roles.

Note: If user A has role B, and role B is deleted, user A will be assigned an empty role and will no longer be allowed to login. The Administrator or someone who can manage users will need to assign a new role for user A before he/she can login.
Next: Access Group
Retrieved from "https://www.senfi.io/docs/index.php?title=V2/Concepts/User&oldid=3114"