Permissions - general
QSToolbox controls what a user can do in the software via their permission group, and by any specific roles for an individual content item. Permission groups govern overall access levels, while roles can change what a user is allowed to do with that content item.
Permission Groups:
- member
- staff
- module_managers (document_managers, issue_managers, assets_managers, etc)
To manage permissions for a user, you'll need to be in the 'staff' group.
New users are observers
Most users should be 'members'
- view
- add new content (e.g., to report an issue)
- edit content only if it is assigned to them.
- edit content not assigned to them
- delete any content
- manage users or settings.
'Module'_managers
- add
- edit
- delete
- undelete
- change workflow status (e.g. close an issue, release a document)
- use bulk actions
Module_managers can not:
- change settings (e.g. types)
- manage users
'Staff' users
Users in the 'staff' permission group have full access to everything - except in the Training module.
- add
- edit
- delete
- undelete
- change workflow status (e.g. close an issue, release a document)
- use bulk actions
- change settings (e.g. types)
- manage users
All powerful?
For full access to everything, a user needs to be in the 'staff' and 'training_manager' groups.
Roles:
Most content in QSToolbox can be assigned to a user. This gives them the role of 'Assignee', and permission to edit that item. Some modules have other roles that grant different permissions. Here are some of the roles in QSToolbox:
- Assignee
- Editor (for a document)
- Approver (for a document)
- Viewer (for an employee in Training)
For more on what different roles can do in each module, have a look at the permission matrix for the module.