Rights and Permissions Management

Rights and Permissions Rights and Permissions

Introduction

The management of DataChain rights and permissions is only available to DataChain Administrators, from the groups and users management page accessible from the "Administration of GenericsData" menu GenericsData logo .

Rights and permissions management is divided into two main categories

  • Global permissions*: permissions on the main functions of GenericsData and HandleData. Global permissions are assigned and applied per user and per group of users.
    Global Permissions are assigned from the Users menu in GenericsData.
    Global permissions allow you to

    • define access to the main functions

    • define the ability to create new elements

  • Item rights*: rights over the actions that can be carried out on items. These rights differ depending on the type of element (DataBlock, Business Entity, Graphic, etc.).

Rights apply only to referenced and active users of a DataChain instance.
In the value chain Connectors >>> Repositories >>> Business Entities >>> DataBlock >>> HandleData presentations: rights are inherited.

Global Permissions

Impact of global permissions on DataChain GUI

The global permissions are assigned for each user. This assignment is made from the users management page, Global Permissions tab.

Global Permissions

Permissions on GenericsData functions Logo GenericsData

Function Description if active

Export Project

Users with the Project Manager role can export Projects for which they are the Project Manager.

Import Project

The user with the Project Manager role can import Projects to create new Projects.

GenericsData

Select to assign all rights to Generics functions

Connectors

Access the list of Connectors

Connectors - Creation

Create Connectors

Repositories

Access the list of Repositories

Repositories - Creation

Create Repositories

Business Entities

Access the list of Business Entities

Business Entities - Creation

Create Business Entities

DataBlocks - DataFabrique

Access the list of DataBlocks

DataBlocks - Creation

Create DataBlocks

Value Search

Perform a Value Search

DataChain Graph

Display DataChain Plot View

Link Plot

Display Link Plot View

Quick Integration

Perform a Quick Integration

DataChain Import

Perform a DataChain Import

Database Import

Perform a Database Import

Task Supervision

Display the Task Supervision screen

Traceability

Display Traceability pages

Tags

Access the Tags list

Tags - Creation

Create Tags

Metadata management

Access the global metadata management page

Pictograms

Access the list of Pictograms

Pictograms - Creation

Create Pictograms

Catalogue of Formulas

Access the list of formulas in the Catalogue

Refer to DataCatalogue

Add DataBlocks to the DataCatalogue

Export Template

Access the list of Export Templates

Export Template - Creation

Create Export Templates
Table 1. Permissions on HandleData functions Logo HandleData
Function Description if active

HandleData

Select to assign all rights to HandleData functions

Dashboards

Access the list of Dashboards

Dashboards - Creation

Create Dashboards

TimeLine

Access the list of TimeLines

TimeLine - Creation

Create TimeLines

Create TimeLines

Graphics Area, Rod and Line, Gauges, Pie, Pyramid

Access the list of graphics

Graphics - Creation

Creating Charts

Tables

Access the list of Tables

Tables - Creation

Create Tables

Maps

Access the list of Maps

Maps - Creation

Create Maps

Media

Access the Media list

Media - Creation

Create Media

Rankings

Access the list of Rankings

Rankings - Creation

Create Rankings

Semantic rules

Access the list of Semantic Rules

Semantic Rules - Creation

Rights to items created in DataChain functions

The user who creates an element has all the rights on this element. A user cannot modify their own rights.

Place of assignment of the rights on the elements

Rights are applied to each element created in DataChain.
To access the rights management page for an element, click on the action menu at the top right of the element’s page 1 then on "Shares / Permissions" 2.

Access rights and permissions

Example of DataBlock Permissions management

Management screen view

Inheritance and Propagation of Rights

The DataChain value chain begins with a Connector and can end with a Dashboard.
Logically, the value chain is constructed as follows:

StringValues.png

Example of the rights screen on Connectors elements

Example Rights Screen

1 List of referenced users of DataChain instance

2.20 Yes/No button (Shortcut) allowing all rights to be assigned the value ON or the value OFF

3 Yes/No button allowing to define the right for a user for each type of action.

Rights are applied to the user as soon as the right is assigned.

Assignment of rights by element type

Rights apply at every stage of the value chain.

Rights on connectors
Rights Ratings

Reading

OFF: the connector is never visible to the user
ON: the connector is visible to the user

Amendment

OFF: User cannot change connector settings
ON: User can change connector settings

Deletion

OFF: the user cannot delete the connector
ON: the user can delete the connector

Data

OFF: the user cannot view data from the connector
ON: the user can view the data from the connector

Rights

OFF: the user cannot assign rights on this connector to other users
ON: the user can assign rights on this connector to other users
Rights on deposits
Rights Ratings

Reading

OFF: the repository is never visible to the user
ON: the deposit is visible to the user

Amendment

OFF: the user cannot modify the parameters of the deposit
ON: user can change repository settings

Deletion

OFF: the user cannot delete the deposit
ON: the user can delete the deposit

Data

OFF: the user cannot view data from the repository
ON: the user can view data from the repository

Extractions

OFF: the user cannot perform or view the contents of the repository checkouts
ON: the user can perform and view the contents of the repository extractions

Rights

OFF: the user cannot assign rights to this repository to other users
ON: the user can assign rights to this repository to other users
Rights on Business Entities
Rights Ratings

Reading

OFF: the business entity is never visible to the user
ON: the business entity is visible to the user

Amendment

OFF: the user cannot modify the parameters of the business entity
ON: the user can modify the parameters of the business entity

Deletion

OFF: the user cannot delete the business entity
ON: the user can delete the business entity

Features

OFF: the user cannot act on the characteristics of the business entity
ON: the user can act on the characteristics of the business entity

Connections

OFF: the user cannot act on the links of the business entity
ON: the user can act on the links of the business entity

Persist/cache

OFF: the user cannot persist or depersist the business entity
ON: the user can carry out persistences or de-persistences of the business entity

DC export

OFF: the user cannot perform DataChain type exports (Structure + Data) of the business entity
ON: the user can perform DataChain-type exports (Structure + Data) of the business entity

export

OFF: the user cannot perform standard exports of the business entity
ON: the user can perform standard exports of the business entity

Rights

OFF: the user cannot assign rights on this Business Entity to other users
ON: the user can assign rights on this Business Entity to other users

Columns (See)

For each user and for each column, it is possible to assign visibility and/or encryption rights
Rights to Datablocks
Rights Ratings

Reading

OFF: the DataBlock is never visible by user
ON: the DataBlock is visible to the user

Amendment

OFF: the user cannot change the DataBlock settings
ON: User can change DataBlock settings

Deletion

OFF: the user cannot delete the DataBlock
ON: the user can delete the DataBlock

Connections

OFF: the user cannot create, modify or delete the DataBlock’s links to other DataBlocks or other Business Entities
ON: the user can create, modify or delete DataBlock links to other DataBlocks or other Business Entities

Persist/cache

OFF: the user cannot persist or de-persist the DataBlock
ON: the user can carry out persistences or de-persistences of the DataBlock

DC export

OFF: the user cannot perform DataChain type exports (Structure + Data) of the DataBlock
ON: the user can perform DataChain-type exports (Structure + Data) of the DataBlock

export

OFF: the user cannot perform standard exports of the DataBlock
ON: the user can perform standard exports of the DataBlock

Export traceability

Rights

OFF: the user cannot assign rights on this Datablock to other users
ON: the user can assign rights on this Datablock to other users

Columns (See)

For each user and for each column, it is possible to assign visibility and/or encryption rights
Rights to HandleData presentation elements
Rights Ratings

Reading

OFF: the presentation is never visible to the user
ON: the presentation is visible to the user

Amendment

OFF: User cannot change presentation settings
ON: User can change presentation settings

Deletion

OFF: the user cannot delete the presentation
ON: the user can delete the presentation

Rights

OFF: the user cannot assign rights to this presentation to other users
ON: the user can assign rights to this presentation to other users

Impact of rights management on data

Heritage_Droit.png