Working with User Roles and Privileges
Roles and responsibilities are a great example of defining a boundary between the user in a platform. Generally when you are working on a platform you are supposed to do certain activities which is approved to you, while it should deny certain activities which you are not supposed to do.
In APPSeCONNECT, we support a feature called User Role which allows the user to perform certain tasks on the platform.
Types of roles
In APPSeCONNECT, we generally provide two kinds of role.
- Connection Manager
A Connection Manager is a standard user who can browse through the platform, do transactions in the platform, but can never change anything inside the platform. A connection manager is the one who does the day to day activities on the platform, some of the common tasks :
- Execute / Reschedule Processflows.
- Check Sync Info logs and Resync failed items manually.
- Manage environments.
- Open ProcessFlows and view the logic of execution.
- Check Feeds for audit logs.
- Check Dashboard.
The user would be able to view most of the sections on his own account, but unable to change anything.
An administrator will be allowed to do any edits on the platform. That means anything an implementation partner did to his account, the administrator can modify it based on their own requirements. Generally the account administrator is the main owner of the account and have full control of what you do in the account. Any change you make on the account, will be audited in Feeds section such that you can check what is changed when.
- Create / edit Processflows.
- Install packages.
- Deploy packages or processflows.
- Modify User privileges.
- Install Rules.
- Undeploy processflows.
- Delete environments
In other words, if you want full control of your account, you need to be an administrator of the account.
Steps to change Role
If you are an administrator, you will be able to change the role of an user to “Connection Manager” such that he will only have readonly permission to the account. To do this, let us follow the steps:
- Open https://portal.appseconnect.com
- Go to Manage -> Users
- A list of users will be shown to you.
- Click on Change role button as highlighted in the above image.
- You will be prompted with a popup having a dropdown which allows you to change role of that particular user.
- Once you save, the changed User role will appear to be displayed on the screen.
On next login, the user will have different privileges’ based on the choice.
If you are a connection manager, you cannot change roles of any user. Also you cannot change roles of the user in which you are logged in.
Some frequently asked questions.
Why I have only few default roles ?
Generally for new accounts, we provide basic roles. But for enterprises, who want to access advanced User security feature, can create / alter roles and give permission specific to a particular section to a user.
Why do I see Unauthorized access error message?
If you do not currently have access to a page, but still you try to open the same, through either a link of from a application itself, you will see this error message. The error message indicates, you do not have access to this page.
Why am I unable to restrict viewing capabilities for an user?
APPSeCONNECT is a platform which always want its users to have good understanding of the platform. We want to ensure more and more users can learn about the platform. By enabling the viewing capabilities, you will instigate the users to know about the logic which is put up to create a process. This way the users will be more and more inclined to know about the platform.
By the way, if you need an account without viewing capabilities and you want your users to restrict knowing the logic, you can ask to purchase our Advanced Security feature which will allow to restrict roles for a particular user.
I hope the understanding of roles in the platform comes very handy while using APPSeCONNECT platform. Feel free to comment your use cases if any to let us know what you need from the platform.