Manage Users (Workspace-menu)
The tabs that are available for Manage Users option in the workspace menu are described below.
My Roles
The users can verify their assigned privileges on the My Roles tab.
The information displayed on the My Roles tab are explained below:
| Field | Description |
|---|---|
| Roles | Privileges assigned to the user for the role(s) selected from this list can be viewed in the Privilege section. |
Privilege
Revoked: You will not be able to perform the revoked action(s). Request your System Administrator to allow any revoked privilege(s) that you may need.
Allowed: You will be able to perform the allowed action(s) unrestricted.
Denied: You will not be able to perform the denied action(s).
| Workspace | The role privileges for features: Summary, Audit, Project, Register Image and Connections will be visible in the Workspace section. |
| Project | The role privileges for features: Models, Register Entities, Data Validation, Workflow, Version Control, Import Export Entities, Sandbox, Pipeline, Processor Group, Compute Environment, Dataset and Applications will be visible in the Project section. |
LDAP
The LDAP tab on the workspace listing is divided in two parts, Global LDAP Groups and Custom LDAP Groups.
The Global LDAP Groups will contain the list of LDAP groups and the roles assigned by the superuser. They cannot be deleted from the Actions column.
The Custom LDAP Groups will contain the list of LDAP groups and roles assigned at the Workspace level. They can be deleted from the Actions column.
The steps and configuration to add custom LDAP groups and roles is same as mentioned in the table for Global LDAP groups which is given in Manage Users (Main Menu) topic.
Roles
The Roles tab contains the list of Global roles (created by superuser through the main menu) and custom roles (added through the workspace menu).
The Global roles listed on this tab cannot be deleted from the Actions column.
The steps and configuration to add roles is same as mentioned in the Manage Users (Main Menu) topic.
Users
The Users tab contains the list of users.
The options and functionality are same as described in the Users section of the Manage Users (Main Menu) topic.
Groups
A number of users that are registered in Gathr can be combined in a group to manage assignment of privileges for the entire group from Groups tab.
Listing Page
The information and actions displayed on the Groups listing page are explained below:
| Field | Description |
|---|---|
| Name | Name of the group created. |
| Members | Total count of the users in the group. |
| Roles | Type of roles assigned to the group. |
| Actions | Options to edit or delete the group. |
Add Groups
The groups can be created using the New Group option given on the top right side of the Groups tab.
The configuration details for creation of a new group are described in the table given below:
New Group
The New Group section is divided in two parts, Users and Set Privileges.
Each of them is explained in detail below.
Users
Any number of users that exist in Gathr can be registered using the Add Users to Group option.
Either the users can be added from the given list or a CSV file having the list of users can be uploaded and validated.
Set Privileges
| Field | Description |
|---|---|
| Select Roles | Privilege(s) of the role(s) selected will instantly load in the Set Privilege section. For any privilege conflicts, load preference is given to Deny > Allow > Revoke. Deny privilege(s) strictly remain unchanged, whereas any additional privilege changes appear as ‘Direct Privileges’ on the listing page. |
| Set Privileges as Role | For the privilege(s) that are selected and set, a new role can be created using this option. If user clicks on SET PRIVILEGES AS ROLES option, a new window will pop up with options to provide the role name and description and thereby register the role. |
Set Privilege
Select and set the role privilege(s), or instantly load privilege(s) of the existing role(s) and user(s) with configuration options explained above. Possible options to set privileges are:
Revoke: Set by default. User(s) assigned with this role will not be able to perform the revoked action(s).
Allow: User(s) assigned with this role will be able to perform the allowed action(s) unrestricted.
Deny: User(s) assigned with this role will not be able to perform the denied action(s).
Revoke and Allow can be changed to any other privilege as required (by providing direct privilege) when the existing roles are later mapped to user(s). But, Deny privilege(s) strictly remain unchanged.
| Workspace | If the role privileges are customized in the Set Privilege section, then the privilege settings for features: Summary, Audit, Project, Register Image and Connections can be done in the Workspace section. |
| Project | If the role privileges are customized in the Set Privilege section, then the privilege settings for features: Models, Register Entities, Data Validation, Workflow, Version Control, Import Export Entities, Sandbox, Pipeline, Processor Group, Compute Environment, Dataset and Applications can be done in the Project section. |
If you have any feedback on Gathr documentation, please email us!