Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
| 72:manage_users_groups_permissions [2019/04/23 13:30] – emr | 72:manage_users_groups_permissions [2019/06/06 10:02] – [Permissions] sph | ||
|---|---|---|---|
| Line 28: | Line 28: | ||
| This switch defines if the permission is an Allow or a Deny. | This switch defines if the permission is an Allow or a Deny. | ||
| + | |||
| + | The following rules apply: | ||
| + | |||
| + | * Deny is stronger than Allow: A user has no access to a specific domain, if that user is member of two groups and one denies access to that domain and one allows it. | ||
| + | * Everything, that is not explicitly allowed is denied. | ||
| **Domain** | **Domain** | ||
| Line 54: | Line 59: | ||
| **Level** | **Level** | ||
| - | The level attribute is only relevant for the Processes domain. It corresponds with the security level of the individual process elements. | + | The level attribute is only relevant for the Processes domain. It corresponds with the security level of the individual process elements. For example: If a certain security level applies to a process element, a user needs Read permissions with the same level or higher to be able to see it. |
| **Precedence** | **Precedence** | ||