3.0 Root,Tenant and Applet Role Functionalities

3.1 Root Level Roles

Permission → Assignee → Target

  1. High level permission

  2. API Level

  3. Angular Level

  4. Group itself possess a role as well: Owner, Admin, Member

  5. Members inside group possess roles as well

Assignee:- User, Group, Role (description) Target:- Branch, Company, Entity

Developer : BLG

  1. an manage hostname

  2. Can manage launchpad panel

  3. Can manage catalog

  4. Can manage group

  5. Can manage team

  6. Can manage workspace in launchpad

  7. Can configure permission for user, self created group and self created tenant

  8. Can install applets from global applet store

  9. Can assign admin to a tenant, group, team

  10. Can create a new custom role

  11. Can remove or add admin

  12. Can add members into tenant, group, team

  13. Can create workspace

  14. Can invite new users to become members

  15. Can revoke new users’ invitation request

Admin : Other IT companies onboard BLG platform

  1. Can CRUD hostname

  2. Can CRUD launchpad panel

  3. Can CRUD catalog

  4. Can CRUD group

  5. Can CRUD team

  6. Can CRUD workspace in launchpad

  7. Can configure permission for user, self created group and self created tenant

  8. Can install applets from global applet store

  9. Can assign admin to a tenant, group, team

  10. Can create a new custom role

  11. Can remove or add admin

  12. Can add members into tenant, group, team

  13. Can create workspace

  14. Cannot remove owner or another admin

  15. Can invite new users to become members

Member = End users

  1. Can create workspace

  2. Can install applets from global applet store

  3. Can update own profile

  4. Can invite new users to become members

  5. Can CRUD hostname

  6. Can CRUD group

  7. Can CRUD launchpad

  8. Can CRUD catalog

  9. Can RU applet store

  10. Can R tenant

Guest (demo account)

  1. Can view launchpad panel but not workspace

  2. Can view all public catalog and applets in global applet store

  3. Can view all root level applets functions

3,2 Tenant Level Roles

Permission → Assignee → Target

  1. API Level

  2. Angular Level

  3. Team type: Department, Designation etc etc

Assignee:- User, Group, Role Target:- Branch, Company, Entity

Owner

  1. Can create (applet name)

  2. Can read (applet name)

  3. Can update (applet name)

  4. Can delete (applet name)

Admin

  1. Can create

  2. Can read

  3. Can update

Member = members that are added into this tenant

  1. Can create

  2. Can read

Guest (demo account)

  1. Can read only

3.3 Applet Level Roles

Permission → Assignee → Target

  1. API Level

  2. Angular Level

Assignee:- User, Group, Role Target:- Branch, Company, Entity

Owner

  1. Can create (applet name)

  2. Can read (applet name)

  3. Can update (applet name)

  4. Can delete (applet name)

Admin

  1. Can create (applet name)

  2. Can read (applet name)

  3. Can update (applet name)

Member = Staff

  1. Can create (applet name)

  2. Can read (applet name)

Guest (demo account)

  1. Can read only (applet name)

Group

The owner role

By default, the owner role has the highest level of permissions. Owners can:

  1. Add or remove other owners.

  2. Create roles.

  3. Delete the group.

  4. Export group memberships and messages.Members with the owner role have the greatest control over the group, so we recommend e. Keeping the number of owners low.

The manager role

The manager role has these default permissions: a. Manage members and moderate content b. Add or remove managers

The member role

Everyone in a group has the member role by default. Features of the member role include: a. Permission to moderate metadata, such as tags, and assign topics in collaboration groups b. Permissions set for the member role are automatically given to all other roles c. Permissions set for the member role are grayed out in the other roles because they’re already applied