Permission system - Roles

Roles

One user can have multiple roles at the same time - parallel. For example, a user can have an organization admin role at OrgA, an organization member role at OrgB, and guest privilege to ProjectD and ProjectB.

 

Permission Name

Effects

Scope

Permission Name

Effects

Scope

Organization Admin

This user is an admin in the specified organization.

Organization Specific

Organization Member

A sample results (etc.) downloader/uploader for a project. Org. members can not create or delete org. or projects and can not invite or delete members. Org. admin and member can see all organization projects, all sample analysis results, sample analysis results files, and reads.

Organization Specific

Guest

This user can handle (only explore and download?) data in a particular project. A granted guest with privileges on the project level can see every project’s samples, sample analysis results, and files created/uploaded before or after the granting.

Project

Registered user

A registered user with a registered email address.

 

Unregistered user

A general user from the internet, from the landing page.

 

 

Permission matrix

Function - Role

SiteAdmin

Org. admin

Org. member

Guest

(Read)

Guest (Read/Write)

Registered user

Unregistered user

Function - Role

SiteAdmin

Org. admin

Org. member

Guest

(Read)

Guest (Read/Write)

Registered user

Unregistered user

Function - Role

Org. admin

Org. member

Guest

(Read)

Guest (Read/Write)

Registered user

Unregistered user

Function - Role

Org. admin

Org. member

Guest

(Read)

Guest (Read/Write)

Registered user

Unregistered user

Scope

Organization

Organization

Project / Sample

Project / Sample

Entire site

Entire site

Organization list

Organization’s member list

Add Invite org. admin/member/guest

Delete / Remove member/guest

Create organization

*

*

*

*

Delete organization (From SiteAdmin site)

Edit org. name

Browse all organizations (Org. list screen)

Create project

Delete project(Hard)

Edit project (Name, Description, Privacy level, Library, Use custom storage)

Browse all (private, public) org’s projects (Project list screen)

Project details - Guest list

Create/upload a sample

Delete sample

Download metadata (xls)

Upload/Import Metadata

Edit MetaData

Delete MetaData

Create Folder (Result)

Delete Folder (Result)

Upload files

Download files

(Only public)

(Only public)

Delete files

Save search

Browse / Load saved searches (Only user level)

 

 

Change permission settings

Create an App (for org)

Delete app (from org)

Add/delete an app to project

Run app

View runs

(Every run at org' project)

(Every run at org' project)

(Only own runs)

(Only own runs)