Difference between revisions of "About Roles and Data Visibility"
From AgileApps Support Wiki
imported>Aeric |
imported>Aeric |
||
Line 13: | Line 13: | ||
:*[[Visibility Controls]] determine whether records owned by others are visible and optionally, whether they can be modified. | :*[[Visibility Controls]] determine whether records owned by others are visible and optionally, whether they can be modified. | ||
:* In addition: | |||
::* Users who are the owner of a [[Task]] can view the record the Task is attached to. | |||
::* When a [[Process Model]] specifies that a User Task is to be closed with an accompanying Form, the user can view and edit record the Task is attached to when they are completing the task. | |||
:* [[Team Data Sharing Policies]], which allow data to be shared across Teams. (These settings override the record-level access permissions specified in the individual's Visibility Controls.) | :* [[Team Data Sharing Policies]], which allow data to be shared across Teams. (These settings override the record-level access permissions specified in the individual's Visibility Controls.) | ||
:*[[Field_Settings#Field_Visibility|Field Visibility]], when used, specifies data visibility at the [[Fields|Field]] level. | :*[[Field_Settings#Field_Visibility|Field Visibility]], when used, specifies data visibility at the [[Fields|Field]] level. |
Revision as of 23:59, 11 September 2013
A user's access to data is determined by a number of factors:
- The user's Access Profile specifies global access permissions and administrative permissions.
- The Application Access settings determine which applications the user can run. The Objects available to the user are therefore the combination of
- a. Objects that are part of the running application
- b. Objects that are shared from other applications.
- The user's Role in the application, as specified by the Application Access settings, specifies high-level access rights to individual application objects. (The privileges granted in Access Profiles and Roles are additive. If either the Access Profile or the Role grants permission to perform some operation on an object, then the user has that permission.)
- Visibility Controls determine whether records owned by others are visible and optionally, whether they can be modified.
- In addition:
- Users who are the owner of a Task can view the record the Task is attached to.
- When a Process Model specifies that a User Task is to be closed with an accompanying Form, the user can view and edit record the Task is attached to when they are completing the task.
- Team Data Sharing Policies, which allow data to be shared across Teams. (These settings override the record-level access permissions specified in the individual's Visibility Controls.)
- Field Visibility, when used, specifies data visibility at the Field level.