Skip to main content
Mitratech Success Center

Actions Module Security

Assignments are additive

If User has access to an action by at least one rule - User is able to see the Action

If User has access to an action with some Role by at least one rule - User is able to do all operations with the Action which the Role allows

 

Terminology

CONFIDENTIAL Action is an action with Confidential option enabled

NON-CONFIDENTIAL Action is an action with Confidential option disabled

 

 

Company Defaults

Applicable to: all NON-CONFIDENTIAL Actions

Access granted to:

  1. Users that are selected in Admin / User Groups / Default User Groups page / Default Action Assignments section
    • with roles from Admin / Users / Edit dialog
  2. Members of User Groups that are selected in Admin / User Groups / Default User Groups page / Default Action Assignments section
    • with roles from Add Assignment dialog - if Consider Roles option of User Group is enabled
    • with roles from Admin / Users / Edit dialog - if Consider Roles option of User Group is disabled

 

 

Inherited from Org Unit/Entity Pair

Applicable to: NON-CONFIDENTIAL Actions with selected Org Unit or Entity

Access granted to:

  1. Users that are given access to Action's Org Unit / Entity pair
    • with roles from Admin / Users / Edit Assignments page that meet Role-Requirements
  2. Members of User Groups that are given access to Action's Org Unit / Entity pair
    • with roles from Admin / User Groups / Edit Assignments page that meet Role-Requirements - if Consider Roles option of User Group is enabled
    • with roles from Admin / Users / Edit dialog that meet Role-Requirements - if Consider Roles option of User Group is disabled

Role-Requirements:

  • Role must have option Only provide access to Own Actions disabled
  • Action Category of Action must be selected for Role on Admin / Roles / Edit page / Action Permissions section / Category Restrictions popup

this role-requirement is applied only for Actions with Action Category selected

Note: If User or User Group is assigned to Action's Org Unit / Entity pair, but Role-Requirements are not met - user does not have access to the Action

 

 

Owner & Responsible

Applicable to: all Actions (including CONFIDENTIAL actions)

Access granted to:

  1. Assignor of Action
  2. Responsible of Action
    • with roles that user has against Action's Org Unit / Entity pair (including assignments of User Groups the user is member of)

Note: If User is not assigned to Action's Org Unit / Entity pair - user does not have access to the Action

 

 

Superior of Owner & Superior of Responsible

Applicable to: all Actions (including CONFIDENTIAL actions)

Access granted to:

  1. Superior users of Action Assignor
  2. Superior users of Action Responsible
    • with roles that superior user has against Action's Org Unit / Entity pair & meet Role-Requirements (including assignments of User Groups the user is member of)

Role-Requirements:

  • Role must have option Access Inferiors Actions enabled

Note: If User is not assigned to Action's Org Unit / Entity pair - user does not have access to the Action

Note: If User is assigned to Action's Org Unit / Entity pair, but Role-Requirements are not met - user does not have access to the Action

  • Was this article helpful?