Security rules
In > > 
, you can define to which sections users can access and which actions they can do.
The security rules in FieldLogs follow the rule of "deny first, authorize explicitly". You need to grant the appropriate access right to a role, and assign this role to the right users to let them access to a specific section or action.
Important
Some access rights include other logical access rights.
For example, when you have a right a Write access, you automatically have a Read access. You do not need to create two security rules to have the Read and the Write access on a securable object.
Note
To have the right to delete a securable object, you need to have the access "All" on this securable object.
Securable Object | Description | Access rights | Description |
|---|---|---|---|
Templates | Access to actions related to templates. | Read | The user has a read access to templates. |
Write | The user has a write access to templates. | ||
Assign | The user can assign templates. | ||
Acquire data | The user can acquire data on templates. | ||
Edit info | The user can edit the information on templates. | ||
All | The user has all the access rights on templates. | ||
Jobs | Access to actions related to jobs. | Read | The user has a read access to jobs. |
Write | The user has a write access to jobs. | ||
Export | The user can export jobs. | ||
Assign | The user can assign jobs. | ||
Acquire data | The user can acquire data on jobs. | ||
Edit info | The user can edit info on jobs. | ||
Seal Job | The user can seal jobs. | ||
All | The user has all the access rights on jobs. | ||
Usermetadata | Access to actions related to metadata. | Read | The user has a read access on metadata. |
Write | The user has a write access on metadata. | ||
All | The user has all the access rights on metadata. | ||
User | Access to actions related to users. | Read | The user has a read access to users. |
Write | The user has a write access to users. | ||
Assign Roles | The user can assign roles to users. | ||
All | The user has all the access rights on users. Your rights on users are limited depending on your status in the hierarchy of the enterprise. | ||
Enterprise | Access to actions related to the enterprise. | Read | The user has a read access to the enterprise. |
Write | The user has a write access to the enterprise. | ||
All | The user has all the access rights on the enterprise. It includes the right to delete groups. | ||
Template DB | Access to actions related to published templates. | Read | The user has a read access to published templates. |
Write | The user has a write access to published templates. | ||
All | The user has all the access rights on published templates. It includes the right to delete published templates. | ||
Tasks | Access to actions related to tasks. | Read | The user has a read access to tasks. |
Write | The user has a write access to tasks. | ||
Assign | The user can assign a task. | ||
All | The user has all the access rights on tasks. | ||
Projects | Access to actions related to projects. | Read | The user has a read access to projects. |
Write | The user has a write access to projects. | ||
All | The user has all the access rights to projects. It includes the right to delete projects. | ||
Task Queues | Access to actions related to Task Queues. | Read | The user has a read access to task queues. |
Write | The user has a write access to task queues. | ||
All | The user has all the access rights to task queues. It includes the right to delete task queues. Your rights on task queues are limited depending on your status in the hierarchy of the enterprise. | ||
Roles | Access to actions related to roles. | Read | The user has a read access to roles and can assign roles and can edit roles. |
Write | The user has a write access to roles. | ||
All | The user has all the access rights to roles. It includes the right to delete roles. | ||
Lifecycles | Access to actions related to lifecycles. | Read | The user has a read access to lifecycles. |
Write | The user has a write access to lifecycles. | ||
All | The user has all the access rights to lifecycles. | ||
Security Exceptions | Access to actions related to security exceptions. | Read | The user has a read access to security exceptions. |
All | The user has all the access rights to security exceptions. | ||
Reports | Access to actions related to reports. | Read | The user has a read access to reports. |
Write | The user has a write access to reports. | ||
All | The user has all access rights to reports. It includes the right to delete reports. | ||
Objects | Access to actions related to object. | Read | The user has a read access to objects. |
Write | The user has a write access to objects. | ||
Export | The user can export objects. | ||
All | The user has all the access rights to objects. It includes the right to delete objects. | ||
Data | Access to actions related to data. | Read | The user has a read access to data. |
Write | The user has a write access to data. | ||
Export | The user can export data. | ||
All | The user has all the access rights to data. It includes the right to delete data. | ||
Documentation Bundles | Access to actions related to documentation bundles. | Read | The user has a read access to documentation bundles. |
Write | The user has a write access to documentation bundles. | ||
All | The user has all the access rights to documentation bundles. | ||
Managed Items | Access to actions related to managed items. | Read | The user has a read access to managed items. |
Write | The user has a write access to managed items. | ||
Export | The user can export managed items. | ||
All | The user has all the access rights to managed items. It includes the right to delete managed items. | ||
User Set | Access to actions related to user sets. | Read | The user has a read access to user sets. |
Write | The user has a write access to user sets. | ||
All | The user has all the access rights related to user sets. It includes the right to delete user sets. | ||
Template feedback | Access to actions related to template feedbacks. | Create | The user can create template feedbacks. |
View | The user can view and create template feedbacks. | ||
Change status | The user can view, create and change the status of template feedbacks. | ||
All | The user has all the rights on template feedbacks. | ||
Execution profiles | Access to archiving rights in FieldLogs. | Read | The user has a read access to execution profiles. |
Write | The user has a write access to execution profiles. | ||
All | The user has all the rights on execution profiles. | ||
Special Rights | Access to special rights in FieldLogs. | Archive Tasks | The user can archive tasks. |
Unarchive Tasks | The user can unarchive tasks. | ||
All | The user has access to all special rights. | ||
Global UI | Access to sections in FieldLogs, from the web and from the application. | Inbox | The user can access the section . |
Jobs | The user can access the section . | ||
Templates | The user can access the section . | ||
All | The user can access all the sections. | ||
Web UI | Access to sections in FieldLogs from the web. | Planning | The user can access the section . |
Projects | The user can access the section . | ||
Reports | The planning can access the sub-section . | ||
Tasks | The user can access the section . | ||
Template feedback | The user can access the sections and tabs related to template feedbacks. | ||
Enterprise User Sets | The user can access the sub-section . | ||
Task Queues | The user can access the sub-section | ||
Enterprise Admin section | The user can access the sub-section . | ||
Roles | The user can access the sub-section . | ||
Event subscriptions | The user can access the sub-section . | ||
Documentation Bundles | The user can access the sub-section . | ||
Managed Items | The user can access the sub-section . | ||
Data Bridges | The user can access the sub-section . | ||
Security Exceptions | The user can access the sub-section . | ||
Identities | The user can access the sub-section . | ||
Syncing Profiles | The user can access the sub-section . | ||
Execution profiles | The user can access the sub-section . | ||
Data | The user can access the sub-section . | ||
Translate with Google | The user can see the buttons and to translate with Google Translate. | ||
All | The user can access all the sections and sub-sections in FieldLogs. | ||
Everything | Access to everything in FieldLogs. | All | The user has access to all the sections and has all the rights in his enterprise. You need to have the access to grant the access to another user. |