Managing Permissions

Understanding Permissions logic

Permissions in LAPIS are per object. They control the common operations that are allowed or denied on an object for particular Users and Groups. The most important ones are:

read – allows/denies an object to be accessible
write – allows/denies an object to be modifiable
delete – allows/denies object to be delete-able
download – allows/denies an object to be downloadable
owner – allows/denies all operations

Each object in the system has explicitly set and implicit permissions. Explicit permissions are set to each object and can be changed manually, while implicit permissions are applied to an object through connected to it other objects (for example from a Folder object in which it is present) or other rules (for example an Assignee property gives permissions to its Task). Combination of explicit and implicit permissions gives the effective permissions of an object. Explicit permissions overwrite the Implicit permissions. Deny of an operation has priority in effective (combined) permissions.

When an object is created in the system it receives the default explicit permissions as set for its type. This is configured in the “Default Instance Permissions” property in the corresponding Type or if not set there, from the first ancestor Type in which it is defined.

Define Default Instance Permissions for a Type

You have to be part of Administrators group to be able to perform these tasks. Go to the menu Administration/Types and find the type you want to manage.

Edit the “Default Instance Permissions” property, add users, groups or Everyone and allow or deny the operations you want for each of those:

Note that those permissions will be applied to the objects created from now on. All existing objects will keep their existing permissions.

Using Folders, Categories and Tags to manage permissions

Folders, Categories and Tags are all configured to provide inherited permissions to objects they contain. It is enough to set or change permissions to a folder in order to easily propagate them to multiple objects. Note that objects’ explicit permissions will overwrite those set in a folder.

Change explicit permissions of a particular object

Click on Edit Permissions button in the object header:

then click on “Edit Permissions”:

and set the permission you want to be applied to this object:

Profuz LAPIS Getting Started

How to log in?

Application Interface

Application Header

Search Bar

Object Header

Object View

Create New Type

Create new property

Containers and Searches

Media Asset Management introduction

Upload content to LAPIS

Create Asset

Create and manipulate File Records (virtual contents)

Add Metadata

Create user defined metadata fields

Transcode a file

Transcoding templates creation and editing

Organization

Exporting

Downloading

Moving contents

Monitoring

Filtering

Reports

Subtitle integration with SutitleNEXT platform software

Editing subtitles online

Storing media data at Profuz LAPIS

Workflow creation and editing

Workflow Example 1

Workflow Example 2

Export for Video Editing software

Redundancy

Creating User

Managing Permissions

Sales process

Products and services

Purchase process

Inventory

Enumerators

Document Templates

CRM Module

Project Management

Connect data providers

SMTP Configuration

Server Address

Managing Permissions

Understanding Permissions logic

Define Default Instance Permissions for a Type

Using Folders, Categories and Tags to manage permissions

Change explicit permissions of a particular object

No Comments