Understand permissions

Understand permissions

A permission set is a group of rules that govern the accessibility of the components of the app for the user. There are two predefined permission sets available: Read and Write. Selecting Read will give the user permission to read all the components of the app, while selecting Write will give the user permission to write in all components of the app. The admin of the app can also create custom permissions base on their requirements.

The Add permission set pane is as follows:

The API Access option in the permission set will let you choose whether users with this permission will be able to use the APIs. This feature is helpful when the admin wants to prevent unauthorized usage of the available APIs.

The PII data option will let you choose whether the users with this permission will be able to access data marked as Personally Identifiable Information(PII). The PII can be enabled for a field by choosing the Contains personal data option in the Field properties pane in Form builder. For the Show option the fields to be shown should be selected in Field Permission tab for each module. The Field permission can be accessed by clicking on More option found adjacent to each module. When you choose Hide the fields with PII will be disabled and cannot be chosen in the Field Permissions.

The ePHI data option will let you choose whether the users with this permission will be able to access data marked as electronic Protected Health Information(ePHI). The ePHI can be enabled for a field by choosing the Contains health info option in the Field properties pane in Form builder. For the Show option the fields to be shown should be selected in Field Permission tab for each module. The Field permission can be accessed by clicking on More option found adjacent to each module. When you choose Hide the fields with ePHI will be disabled and cannot be chosen in the Field Permissions.

A permission set has four different categories of the permissions: Module level, Record level, Feature level, and Field level.

  • Module level: Enable or disable the access to modules (tabs)
  • Record level: Enable or disable permissions to View, Create, Edit, and Delete records
  • Feature level: Enable or disable permission to access features, such as Import and Export of data
  • Field level: Enable or disable permission to access the fields in a record. In addition you can restrict the access to edit the fields

List of permissions

SectionsDescription
Module-level PermissionsTo enable/disable the following permissions to the various modules and the records in them.
  • Access Form - Permission to allow or restrict access to the modules (Forms, Reports and Pages)
  • View - Permission to allow or restrict access to view reports within the application
  • Create - Permission to allow or restrict access to create records in each form within the application
  • Edit - Permission to allow or restrict access to edit records in each form within the application
  • Delete - Permission to allow or restrict access to delete records from each form within the application 
  • View all - Permission to allow or restrict access to view all records in the associated reports by overwriting the configured role hierarchy and sharing rules associated to that module
  • Modify all - Permission to allow or restrict access to modify all records from each form within the application
  • Search - Permission to allow or restrict search operations

 

 

Import PermissionsVarious permissions required to import records from each module that is owned by you and organization-wide users
Export/Print PermissionsVarious permissions required to export /print records from each module
Note: If role hierarchy is enabled, then the 'View' permission will allow access to the records based on the role configured. If disabled, then all records will be visible(same as 'View All' permission)

Related Topics

Share this post : FacebookTwitter

Still can't find what you're looking for?

Write to us: appcreator-support@manageengine.com