V2/Concepts/User

From Senfi Docs
Revision as of 11:34, 28 June 2021 by Huiyan (talk | contribs)
Jump to: navigation, search

Organization, User, Access Group

An organization represents the entity (eg. company, individual) that is responsible for managing the account that uses Senfi. An organization comprises at least one user with Administrator role. Users with Administrator role are able to manage other users, including user account creation/deletion, user roles etc.

Think of access group as a subset of the assets under the organization. Users can be placed into access groups to have access to those assets. Currently assets that can be assigned to an access group are:

  • user
  • site
  • rule

The term User in this documentation refers to someone who uses Senfi. Users are created within the organization in Senfi. User can be assigned to one or more access groups.

Role

Within an organization, roles are created for various job functions. The permissions to perform certain actions are assigned to specific roles. A role can be assigned to one or several users, and each user can only have one role.

The actions that can be assigned to a role are:

Action
Task Manage User Manage Site Manage Lift Manage Measurement Manage Rule Manage Access Group Can Integrate
Add User Y
Update User Y
Delete User Y
Add Site Y
Update Site Y
Delete Site Y
Add Lift Y
Update Lift Y
Delete Lift Y
Add Measurement Y
Update Measurement Y
Delete Measurement Y
Add Rule Y
Update Rule Y
Delete Rule Y
Add Access Group Y
Update Access Group Y
Delete Access Group Y
Add API Key Y
Delete API Key Y
Check Debugger Y
Check Inspector Y

Each organization has a default role called Administrator that can perform all actions. The Administrator role cannot be edited or deleted, and there must be at least one user in an organization with the Administrator role.

Example of Organization, Role & Actions

Users with the Administrator role are able to manage other roles.

Note: If user A has role B, and role B is deleted, user A will be assigned an empty role and will no longer be allowed to login. The Administrator or someone who can manage users will need to assign a new role for user A before he/she can login.