6 | | 1. Briefing |
7 | | 1. Access control is able to create and edit |
8 | | 1. Read/write and read only should be separate for each role to each module. |
9 | | 1. For registry users, default access is limited since registry is open to public. |
10 | | 1. Each role is separate and independent. Each user is open to give multiple roles. |
11 | | 1. There are 3 types of confidentiality level for map. Each level is an independent module for role setting. |
12 | | 1. Special access control for “fulfill the request” |
13 | | 1. Requirement – Create and edit role |
14 | | 1. Admin users are able to create role |
15 | | 1. Steps for role creation, all are required |
16 | | 1. Click “create a role” button |
17 | | 1. Name the role. Return error message for existing role name. |
18 | | 1. Check the access for modules by checking the access level, see 2.3.3 |
| 6 | * Briefing |
| 7 | * Access control is able to create and edit |
| 8 | * Read/write and read only should be separate for each role to each module. |
| 9 | * For registry users, default access is limited since registry is open to public. |
| 10 | * Each role is separate and independent. Each user is open to give multiple roles. |
| 11 | * There are 3 types of confidentiality level for map. Each level is an independent module for role setting. |
| 12 | * Special access control for “fulfill the request” |
| 13 | * Requirement – Create and edit role |
| 14 | * Admin users are able to create role |
| 15 | * Steps for role creation, all are required |
| 16 | * Click “create a role” button |
| 17 | * Name the role. Return error message for existing role name. |
| 18 | * Check the access for modules by checking the access level, see 2.3.3 |
| 19 | * Role list & Steps for role edition |
| 20 | * Display as below |
| 21 | || Role name / Modules || Org || Shelter || RMS || Hospital || Admin || |
| 22 | || Camp Admin || R || R/W || R/W || R || - || |
| 23 | || Camp Volunteer || R || R/W || R || - || - || |
| 24 | * Find the role by searching role name or browsing role list. |
| 25 | * Click the role name and link to the role editing page as below |
| 26 | |
| 27 | || Role name camp amdin Access control setting || |
| 28 | || Org || none || Read /write || Read only || |
| 29 | || Shelter || none || Read /write || Read only || |
| 30 | || RMS || none || Read /write || Read only || |
| 31 | || [save] || |
| 32 | |
| 33 | * Module access and read/write or read only is editable. |
| 34 | |
| 35 | * Requirement – Read/write and read only |
| 36 | * When the read only is checked for a specific module for a role, the write button should be gray out |
| 37 | * For a user, read/write is able to rewrite read only from two roles for the same module. |
| 38 | * Example: If user C has been given role A and role b, user c is able to read and write for module A. |
| 39 | |
| 40 | || Role A || Module A – Read/write || |
| 41 | || || Module B – Read only || |
| 42 | || Role B || Module A – Read only || |
| 43 | || || Module B – Read only || |
| 44 | |
| 45 | * Requirement – Role and users |
| 46 | * Admin users is default to read/write for all modules and are able to give roles to each user. |
| 47 | * User info edit page for each user |
| 48 | * Put “user profile” into Edit personal Details page by adding one more tab. |
| 49 | * Move the dropdown of login out and instead of the link of the user name to Edit personal Details page. |
| 50 | * Put “Logout” beside user name. |
| 51 | |
| 52 | * Requirement – Access to Mapping special |
| 53 | * Three confidentiality level for map, basic map, advanced level, and top level |
| 54 | * Each level has different layers form Eden map and which will be set by coding. |
| 55 | * Each level is as a separate module in role creation process. |
| 56 | |
| 57 | * Requirement – OpenID usage |
| 58 | * OpenID login is enable for both Agasti and Eden of SahanaTW. However, ACL of the account should be applied with openid login. |