Set Use Permissions for Components

You can set or revoke specific permissions on a component for all users who are members of a particular role. The default permissions apply to all roles that don't have specific permissions defined for this component.

Users in the designated role(s) have these permission options for a component:

  • Create: Can add new records to this component.
  • Read: Can view records for this component.
  • Write: Can edit records for this component.

    Note: Database relationships are bidirectional. You must have 'write' permission for both 'ends' of the relationship before you can modify it.

  • Delete: Can delete records in this component.

As soon as permissions are removed from a particular role, users in that role can no longer do that action - the permissions are removed from the user's total set of permissions.

note_awesome

FIXED SECURITY

Some of the components in the SAI360 database, for examples those used by the Emissions Module, have "fixed" security which cannot be modified.

This lock-down is necessary to ensure that these modules work as expected, especially to secure data integrity.

If fixed security has been applied, then the web application will display a corresponding flag for each of the affected permissions and attributes.

To set and remove role permissions for a component

  1. In the web application, select Designer Menu path separator Security Permissions Menu path separator Component from the menu. A list view of all components is displayed.
  2. Double-click on the component to open its Component Admin definition.

    The Component Admin and Default Permissions sections are read-only - you cannot change any information in these sections.

  3. Go to the Role Permissions section.

    The Role Permissions section is where you add, edit, or remove specific role permissions for this component.

  4. To edit or remove an existing role's permissions on this component:
    1. Find the role in the list, then expand to display its details.
    2. Change the permissions for each function, and, if required, make notes explaining the decision.

      The options for each function are Yes, Filtered, and No. Yes allows users in this role to perform this function; No denies them this right; Filtered means the function has a filter applied. Edit or delete filter conditions, using the Condition Builder in the <Function> Filter text box.

  5. To add a new set of role permissions:
    1. Click the Add New Role Permissions link below the Role Permissions section.
    2. Click on the Role field, select a role from the Selection List, then click OK. Note: The role must exist.
    3. Set permissions for each function on this component for this role, and, if required, make notes explaining the decision.

      The options for each function are Yes, Filtered, and No. Yes allows users in this role to perform this function; No denies them this right; Filtered means the function has a filter applied. Add filter conditions, using the Condition Builder in the <Function> Filter text box.

  6. Repeat steps 4 or 5 for other roles.
  7. Expand attributes in the Attributes section and set role permissions on them, as required, also using the Condition Builder.
  8. When you have finished setting all role permissions for this component, click Save.
  9. Click Close to close the form and return to the Security Component Use Permissions list view.

    Note: Changes are not visible to the user until they are published.

See Also

Grant Use and Design Permissions to a Role

Set Permissions for BI User Console, BI Folders, Reports and Dashboards

Set Use Permissions for Policies

API Keys

External API Tokens