Permission system - Roles
Roles
One user can have multiple roles at the same time - parallel. For example, a user can have an organization admin role at OrgA, an organization member role at OrgB, and guest privilege to ProjectD and ProjectB.
Permission Name | Effects | Scope |
---|---|---|
Organization Admin | This user is an admin in the specified organization. | Organization Specific |
Organization Member | A sample results (etc.) downloader/uploader for a project. Org. members can not create or delete org. or projects and can not invite or delete members. Org. admin and member can see all organization projects, all sample analysis results, sample analysis results files, and reads. | Organization Specific |
Guest | This user can handle (only explore and download?) data in a particular project. A granted guest with privileges on the project level can see every project’s samples, sample analysis results, and files created/uploaded before or after the granting. | Project |
Registered user | A registered user with a registered email address. |
|
Unregistered user | A general user from the internet, from the landing page. |
|
Permission matrix
Function - Role | SiteAdmin | Org. admin | Org. member | Guest (Read) | Guest (Read/Write) | Registered user | Unregistered user |
---|
Function - Role | Org. admin | Org. member | Guest (Read) | Guest (Read/Write) | Registered user | Unregistered user |
---|---|---|---|---|---|---|
Scope | Organization | Organization | Project / Sample | Project / Sample | Entire site | Entire site |
Organization list | ||||||
Organization’s member list | ||||||
Add Invite org. admin/member/guest | ||||||
Delete / Remove member/guest | ||||||
Create organization | * | * | * | * | ||
Delete organization (From SiteAdmin site) | ||||||
Edit org. name | ||||||
Browse all organizations (Org. list screen) | ||||||
Create project | ||||||
Delete project(Hard) | ||||||
Edit project (Name, Description, Privacy level, Library, Use custom storage) | ||||||
Browse all (private, public) org’s projects (Project list screen) | ||||||
Project details - Guest list | ||||||
Create/upload a sample | ||||||
Delete sample | ||||||
Download metadata (xls) | ||||||
Upload/Import Metadata | ||||||
Edit MetaData | ||||||
Delete MetaData | ||||||
Create Folder (Result) | ||||||
Delete Folder (Result) | ||||||
Upload files | ||||||
Download files | (Only public) | (Only public) | ||||
Delete files | ||||||
Save search | ||||||
Browse / Load saved searches (Only user level) |
|
| ||||
Change permission settings | ||||||
Create an App (for org) | ||||||
Delete app (from org) | ||||||
Add/delete an app to project | ||||||
Run app | ||||||
View runs | (Every run at org' project) | (Every run at org' project) | (Only own runs) | (Only own runs) |