Versions Compared

Version Old Version 5 New Version 6
Changes made by

Jim Wilson

Jim Wilson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Admin: user assigned to the admin role

  • BC: business context

  • CtxCat: context category

  • CtxSch: context scheme

  • CtxSchVal: context scheme value

  • BIE owner: the user specified as a BIE's owner

  • manage [x]: create, edit, or delete [x]

  • manage context: create, edit, or delete BCs, context categories, or context schemes (including context category values)

  • N/A: not applicable

  • ←→: association

  • (error): no user (not even admins)

Permissions table

Info

The permissions indicated in the “On-prem instance” column reflect Score current behavior (pre-multi-tenant) behavior.

Notes



User Action

Permissions

On-prem instance

Multi-tenant instance

Create BIE where all BCs are available

  • Any user

  • Technically Admin, but practically this is N/A

Create BIE in BC associated with tenant

  • N/A

  • Admin

  • Any user associated with the tenant

This includes an initial association to a BC where the BC options are limited to the user’s tenancy.

Manage CtxCat, CtxSch, CtxSchVal, BC

  • Any user

  • Admin

Manage BC ←→ BIE

  • BIE owner (who is a user)

  • Owner

This does not include an initial association to a BC on BIE creation.

Create tenant

  • N/A

  • Admin

Manage user ←→ tenant

  • N/A

  • Admin

Manage BC ←→ tenant

  • N/A

  • Admin

Create user

  • Admin

  • Admin

Manage Core Components

  • Developer

No user

Manage user

Admin

Admin

Manage tenant

(error)

Admin

Manage user←→tenant

(error)

Admin

Manage BC←→tenant

(error)

Admin

Create BIE

Any user1

Any user associated with a tenant2,3

Manage BC←→BIE

BIE owner3

BIE owner2,3

Manage context

Any user

Admin

Manage Core Components

Developer

(error)

Make BIE reusable

BIE owner

(error)

Create ABIE extension locally

BIE owner

(error)

Create ABIE extension globally

BIE owner

(error)

1All BCs are available to the user.

2The BCs available to the user on BIE are limited by their tenancy. Users not associated with a tenant cannot create a BIE since they would not be able to assign a BC on BIE creation (all the BCs would all be filtered out). However, it would make sense to alert the user, perhaps on login, that they can’t do anything useful in Score until they have been assigned to a tenant.

3Note that Admins have no special authorization in this case.