Differences

This shows you the differences between two versions of the page.

--- 72:manage_users_groups_permissions [2018/07/17 16:07] – [Manage users, groups, and permissions] bkkr
+++ 72:manage_users_groups_permissions [2019/04/23 13:28] – emr
@@ Line 1: / Line 1: @@
-[[:72:start|Stages V7.2]]
 ====== Manage users, groups, and permissions ======
 You can [[:72:manage_workspaces|manage workspaces]], users, groups and permissions from the administration tab on the left-side menu.
-=== Users ===
+===== Users =====
 Users can be added and settings can be changed from the users section of the administration tab.
@@ Line 15: / Line 13: @@
 Adding a user only adds them to the software, not a specific project or workspace. If you want to assign a role to a user, see the [[:72:assign|assign a role]] page
-=== Groups and Permissions ===
+===== Groups and Permissions =====
 Instead of adding individual users to specific projects, permissions, etc. it is easier to allow groups access. Users can be added to groups and then the entire group can be allowed access or permissions.
@@ Line 25: / Line 23: @@
 **Domain**
-The domain attribute defines the permission.
+The domain attribute defines which operations a user can execute.
-^Permission^Uses|
+{{:73:permissions_matrix_v7_3.xlsx|This permission matrix}}  shows the relationship between the permission domain and the user operations.
-|Application of Process|Tailoring and Phase Freeze|
-|Application of Process (Unrestricted)|Tailoring and Phase Freeze|
-|Comments| |
-|Compliance| |
-|Data Collectors| |
-|External Source| |
-|File Management| |
-|Files|Project Documents|
-|Info Page| |
-|Issues|Configure, Import/Export, Create, Modify, Delete Issues|
-|My| |
-|News|Configure, Show, Create, Delete, Document News|
-|People|View People, Edit Overview Page|
-|People: Departments|Read, Create, Modify, Delete Departments|
-|People: Employees|Read, Create, Modify, Delete Profiles, and Upload Picture|
-|Permissions| |
-|Process Execution Configuration| |
-|Process Import/Export| |
-|Process Management| |
-|Process Module Overwrite| |
-|Process Modules| |
-|Process Release| |
-|Process Versions| |
-|Processes| |
-|Project Attribute| |
-|Project Review| |
-|Project State|View, Change, Manage Project State|
-|Reports|Metric Dashboard|
-|Revert Locks of Others| |
-|Role Assignments|View and Change Role Assignments|
-|Source Checkins| |
-|User Groups| |
-|Users|Log in/out, Define Notification Settings, View Roles and Users,|
-|Wiki|All Access to Wiki|
-|Wiki Articles|Read, Modify, Create, and Delete Wiki Articles|
-|Wiki Categories|Create, Modify/Move, Delete Wiki Categories|
-|Workspace Navigation|Quicklist, Log in/out, Define Notification Settings|
-|Workspaces|All|
-For further information on permissions, see the Permission Matrix. (//Need to put the matrix in here, the excel sheet//)
 **Workspace**
-The workspace attribute allows access to certain workspaces in Stages.
+This attribute defines for which workspace or group of workspaces the permission applies to.
 **Transitive**
-When the transitive attribute is selected, the permission is set for all subsequent modes after.
+When the transitive attribute is selected, the permission applies to the whole subtree of workspaces. If it is not selected, the permission only applies to the workspace as defined with the above attribute.
 **RMCD**
@@ Line 88: / Line 46: @@
 **Level**
-The level attribute allows specific access on parts of process applications.
+The level attribute is only relevant for the Processes domain. It corresponds with the security level of the individual process elements.
 **Precedence**
-The priority of permissions is decided through the precedence attribute.
+This attibute defines the precedence of the permission. The precendence is as follows:
+**High Deny > High Allow > Low Deny > Low Allow**
 \\