[Change access rights] case element
If you want to add or remove access permissions to records in the system objects, use the [Change access rights] element. You can change access rights for multiple users or roles at the same time. To add or remove access sequentially, use several [Change Access Rights] elements.
[Change access rights] element setup
Specify the permission parameters on the element setup area (Fig. 1).
The name of the element is displayed at the top of the setup area. This will make the element more recognizable on the case diagram. This will make the element more recognizable on the process diagram.
[When is the step performed?] – indicates whether the [Change access rights] element is activated at the start of the stage or upon completion of a specified case step. Select “At the start of the stage” if the access rights need to be changed at the start of the case stage. Select “After the previous step is complete” if the access rights need to be changed after the previous step in the case stage. Specify the step in the [Perform after step] field.
[Step type] – specify if the step is required. Select “Required step” if the task needs to be completed to transition to the next stage. If it is not required to perform change access rights to transition to the next stage, select “Optional step”.
Note
A user can advance to the final “lost” stage from any stage without completing the required steps.
In the [Which object to apply access rights to?] field, select the system object for which you want to change permissions. Specify the filter conditions for records which you want to change access rights. For example, only for the “VIP” account records.
How to remove access permissions
Access rights can be deleted for a certain role or user, as well as for several users selected via a filter.
To select users for whom you wish to delete access rights, click the button (Fig. 2).
[For all roles and users] – delete permissions to the selected operations for all users and roles.
[For roles] – delete permissions for the selected organization structure item.
[For employee] – delete permissions for the selected user.
[For the employees who meet the filter conditions] – delete permissions for all users that correspond to the filter conditions.
To delete or modify the selected role, click the button and choose the action you want to perform from the menu.
Select the operations for which you would like to remove access rights – read , edit , or delete data (Fig. 3).
Note
You can delete access permissions to records for several different roles or users. To do this, add the selected users or groups to the list and specify the rights that you want to delete. As a result, when this step is performed, the access rights will simultaneously change for all specified groups and users.
How to add access permissions
Select the users or roles to grant them access rights to read , edit , or delete data.
[For roles] – delete permissions for the selected organization structure item.
[For employee] – delete permissions for the selected user.
[For the employees who meet the filter conditions] – delete permissions for all users that correspond to the filter conditions.
To delete or modify the selected role, click the button and choose the action you want to perform from the menu.
Use the radio button to select the operation access level that will be set when performing an action:
[Granted] – users will obtain permission to execute selected operations.
[Granted with right to delegate] – users will obtain permission to execute operations and to grant this operation permission to other users.
To select the access level, click the button (Fig. 4).
Note
You can remove access tights to records from several different roles or users. To do this, add the selected users or groups to the list and specify the rights that you want to delete. As a result, when this step is performed, the access rights will simultaneously change for all specified groups and users.
See also