1. Overview
Control is a Roles Based Access Control system.
When a user gets created, it has access to log in and view the Cozone Portal, seeing the news and links for their company. But all other to applications, and within applications, is controlled by privileges.
When a user gets granted a privilege they get the ability to access a specific view, feature or application associated with that privilege. Examples of privileges:
Access to Activity - Grants the user the ability to access the Activity application and view the calendars within.
Access to approve year plan - Grants the user the ability to be selected as an approver for year plans in activity
Manage year plans - Grants the ability to edit calendars in Activity and add new activities to them
Roles are named groupings of privileges. Instead of assigning privileges directly to users, it's done via Roles. A role is simply a list of privileges with a given name to help identify it. Roles are created on the level of a company, or corporation.
2. Creating new roles
Start by going to a company's role-tab.
Creating the role implies adding or selecting the following:
Role name - the name of the role, usually a suggestive name for the privileges that this role will have
The option to connect the role to corporation level - by checking this box, the role will be available for all the companies belonging to that corporation
The option to set the role as default for all the users - by checking this box, the role will be automatically assigned to every new user, regardless if the user is added manually or through import in the Employee app ( it will rewrite the data from the import file )
Privileges - the desired privileges can be selected by checking the boxes from the dropdown list of each application, depending on the kind of access the role should grant to the user; privileges can also be searched by their name in the search bar, for a quick selection
