Datalab Applications
Datalab Applications panel allows to set permissions on main authorization tree, where all users are listed.
Form can be accessed by clicking Security panel on Administration Panel.
The form is made up of certain elements, which we describe below.
In this section, you can use function of filterring or searching to display users and groups according to the selected permission.
| None |
If choose, in users permission tree is shown users with None permission.
None permission means, that user has no permissions. Such features are hidden (no visible for user).
|
| Read |
If choose, in users permission tree is shown users with Read permission.
User can only read data (can not write, edit,...).
|
| Write |
If choose, in users permission tree is shown users with Write permission.
User can read, write and change data (can not delete it).
|
| Delete |
If choose, in users permission tree is shown users with Delete permission.
User can read, write, change end delete data. User has full permissions.
|
| Ahow All |
If choose, in users permission tree is shown all users (regardless of the permissions). |
| Active user |
If checked ( ), in users permission tree is shown only active users.
Inactive users are displayed in red color.
 |
HINT
User with Undefined permissions is not displayed and can be added by keyboard combination of CTRL+Insert. The Principals form is opened.
|
|
 |
By clicking, the Prinsipals form is opened for selecting a user with undefined permissions and adding permissions.
|
| User |
From drop-down list select user, which you want to see or edit permisions.
By clicking on  button, Search by form is opened, where you can searching or multi selecting users.
|
 |
WARNING
Removing permissions from a user can be done with CTRL+DELETE keyboard combination.
By removing/deleting user permissions you can remove permissions for all users and groups. In this case you lock yourself out of the program. You can no longer login to Pantheon. Read more in chapter General (see Apply button).
|
Displays users and groups in tree structure and their permissions settings. Assigned authorizations for the currently selected option (select it above with filter) are displayed.
|
Name
|
User name of user for log in.
|
|
Title
|
Name of user.
|
|
Inherited from parent
|
Permissions are inherited from a parent entity.
|
|
Acquired from user group
|
If checked ( ), permissions are inherited from the user group when user is assigned (add) to the user group.
If not checked, permissions are set at the user level.
|
|
Basic permissions
|
- None – there are no permissions. Such features are hidden.
- Read – user can only read data.
- Write - user can read, write and change data.
- Delete – user can read, write, change end delete data. User has full permissions.
|
HINT
Only one of basic permission can be selected.
|
|
|
Write period
|
Back for X days - used for authorizations for single documents; this parameter specifies for how many days in the past the user can change or delete documents.
Examples:
- 0 = the current day,
- 1 = the current day and the day before,
- 30 = thirty days back,
- -1 = unlimited; documents can always be changed or deleted.
|
HINT
When write period is expired, the IRIS message is open.
|
|
|
Full
|
If checked (), user has full permissions (user can read, write, delete) for an indefinite period of time for selected authorization.
|
|
Modified date
|
Date and time of the change.
|
|
Modified By
|
Username of user, who is modified data.
|
Main Authorization menu is intend for setting permissions for program's menus.
|
You can use F1 keyboard button press on each authorization entity for a help content to open.
|
 |
Hint
This is a HINT and should be marked with this icon. If necessary, copy this whole table and add a new hint.
|
|
Warning
This is a WARNING and should be marked with this icon. If necessary, copy this whole table and add a new warning.
|
|
WARNING
In case when child permission is different than parent permission, an icon is changed - so it is easier to find it in a tree view.
Meaning of the icons:
 - child permission is set to None - child permission is set to either write or read
|
BRISI
Authorizations and Assigning Them
Authorizations and Assigning Permissions
By removing/deleting user permissions you can remove permissions for all users and groups. In this case you lock yourself out of the Program. You can no longer login to Pantheon. See Apply button.
Permissions can also be accessed and set from specific user:
or group:
- see Propagade Security.
- see Apply button.
Document Types and permissions for document types and their statuses are also displayed in authorization menu. Item categories, Cost centers, Subject types etc. are displayed as Pantheon menu.
In the Document Types tree menu all specific document types are listed (Goods-Issue, Orders-Sale Orders, etc.) By clicking on a specific document type, a panel for Status Receiving, Confirming Documents and Edit Confirmed Documents is opened. In this panels different permissions can be set to document type statuses.
Departments and Warehouses
When creating new department or warehouse in Subject register, full permissions are automatically set for user who created it and usergroup "administrators" and its members. Other users automatically get permissions as they are set in authorization tree menu.
The following parameters can be set for each node in the authorizations tree:
| Defined |
Entity permission is defined or has no permissions. |
|
Acquired
|
Marked (checked) when permissions are inherited from the usergroup when user is assigned (add) to the usergroup. Not marked (unchecked) permissions; that are set at the user level.
|
| Full |
Setting full or none permissions. If there are existing child entities that are not explicitly set, will also take effect. |
| Inherited |
Permissions that are inherited from a parent entity. |
Read  |
Read-only; such features can be only viewed. |
Write  |
Write - data can be viewed, entered and changed. |
Delete  |
Delete - full access; data can be viewed, entered, changed and deleted. |
None  |
None - no access; such features are hidden. When permission for selecting/reading, updating and deleting are withdrawn. |
|
Update period
|
Back for X days - used for authorizations for single documents; this parameter specifies for how many days in the past the user can change or delete documents. Examples:
- 0 = the current day,
- 1 = the current day and the day before,
- 30 = thirty days back,
- -1 = unlimited; documents can always be changed or deleted.
See also Time Limit for Changing Documents.
|
 |
For a multiple setting of permissions on child entities, see right click menu functions. |
|
For a quicker setting of permissions multiple select is possible by using:
- SHIFT keyboard button and mouse click or up and down keyboard button
- CONTROL keyboard button and mouse click
- CONTROL + A: select all records
|
For setting permissions also see Authorization Levels.
|
Name
|
User name for log in of user.
The username is preceded by a permission icon, which is set on the right side, in the permission tree console.
|
|
Title
|
Name od user.
|
|
Inherited from parent
|
Permissions are inherited from a parent entity.
|
|
Acquired from user group
|
If checked (), permissions are inherited from the user group when user is assigned (add) to the user group.
If not checked, permissions are set at the user level.
|
|
Basic permissions
|
- None – there are no permissions. Such features are hidden.
- Read – user can only read data.
- Write - user can read, write and change data.
- Delete – user can read, write, change end delete data. User has full permissions.
|
HINT
Only one of basic permission can be selected.
|
|
|
Write period
|
Back for X days - used for authorizations for single documents; this parameter specifies for how many days in the past the user can change or delete documents.
Examples:
- 0 = the current day,
- 1 = the current day and the day before,
- 30 = thirty days back,
- -1 = unlimited; documents can always be changed or deleted.
|
HINT
When write period is expired, the IRIS message is open.
|
|
|
Full
|
If checked (), user has full permissions (user can read, write, delete) for an indefinite period of time for selected authorization.
|
|
Modified date
|
Date and time of the change.
|
|
Modified By
|
Username of user, who is modified data.
|