-
Notifications
You must be signed in to change notification settings - Fork 52
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
18 changed files
with
200 additions
and
21 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,67 @@ | ||
## Délégation | ||
|
||
Deming permet de déléguer la réalisation des contrôles de sécurité à des utilisateurs qui ont le rôle *audité*. | ||
L'assignation du rôle audité à un utilisateur se fait via l'écran de [gestion des utilisateurs](/deming/config/#users). | ||
|
||
Cette délégation respecte les règles suivantes : | ||
|
||
- Les audités sont informés régulièrement par mail des contrôles à réaliser ; | ||
- Les audités ne voient que les contrôles à réaliser et les contrôles qu'ils ont réalisés précédemment ; | ||
- Les utilisateurs peuvent accepter ou refuser un contrôle réalisé par un audité ; | ||
- Lorsqu'un contrôle est refusé, il retourne dans la liste des contrôles à réaliser de l'audité. | ||
|
||
|
||
### Liste des contrôles à réaliser | ||
|
||
Du point de revu de l'audité, la page principale de l'application contient la liste des contrôles qui sont assignés à l'utilisateur. | ||
|
||
[<img src="/deming/images/d1.fr.png" width="600">](/deming/images/d1.fr.png) | ||
|
||
L'audité peut : | ||
|
||
- Effectuer des recherches dans la liste des contrôles | ||
- Filtrer les contrôles par domaine, périmètre, attribut, période. | ||
- trier la liste par chacune des colonnes | ||
- sélectionner un contrôle à réaliser | ||
|
||
### Réaliser un contrôle | ||
|
||
Lorsqu'un audité réalise un contrôle, il peut : | ||
|
||
- sauver le contrôle | ||
|
||
- faire le contrôle | ||
|
||
[<img src="/deming/images/d2.fr.png" width="300">](/deming/images/d2.fr.png) | ||
|
||
Lorsqu'il clique sur : | ||
|
||
- "sauver", les modifications qu'il a faites sont sauvées, le contrôle reste dans la liste des contrôles à réaliser | ||
|
||
- "faire", les modifications qu'il a faite sont sauvées et le contrôle passe dans l'état à valider. Du point de vue de l'audité, le contrôle se trouve dans la liste des contrôles réalisés. | ||
|
||
- "annuler", les modifications ne sont pas sauvée, lutilisateur retourne vers la vue du contrôle. | ||
|
||
### Accepter / Refuser un contrôle | ||
|
||
Une fois qu'un contrôle a été réalisé par un audité, il passe dans l'état "à valider". | ||
|
||
Cela se matérialise par un sablier à côté de la date de réalisation dans la liste des contrôles à réaliser : | ||
|
||
[<img src="/deming/images/d3.fr.png" width="600">](/deming/images/d3.fr.png) | ||
' | ||
Lorsque l'utilisateur clique sur la date de réalisation à côté du sablier, il arrive sur le contrôle réalisé par l'audité. | ||
|
||
Il peut alors accepter ou refuser le contrôle en ajoutant une note dans les observations du contrôle et, selon les résultats du contrôle, proposer un plan d'action et une date de revue du contrôle. | ||
|
||
[<img src="/deming/images/d4.fr.png" width="600">](/deming/images/d4.fr.png) | ||
|
||
Si l'utilisateur clique sur : | ||
|
||
- "Accepter" : les données modifiées sont sauvées et un nouveau contrôle est créé à la date de planification introduite. | ||
|
||
- "Rejeté" : les données modifiées sont sauvées et le contrôle est renvoyé dans la liste des contrôles à réaliser de l'audité. | ||
|
||
- "Sauvé" : les données sont sauvées et l'utilisateur revient à la vue du contrôle. | ||
|
||
- "Annuler" : l'utilisateur revient à la vue du contrôle. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,67 @@ | ||
## Delegation | ||
|
||
Deming allows you to delegate the realisation of measurements to users who have the *auditee* role. | ||
The auditee role is assigned to a user via the [user management screen](/deming/config/#users). | ||
|
||
This delegation complies with the following rules: | ||
|
||
- Auditees are regularly informed by email of the measurements to be carried out; | ||
- Auditees only see the measurements to be carried out and the measurements they have previously carried out; | ||
- Users can accept or reject a measurement performed by an auditee; | ||
- When a measurement is rejected, it returns to the list of measurements to be carried out by the auditee. | ||
|
||
|
||
### List of measurements to be performed | ||
|
||
From the auditee's point of view, the application's main page contains the list of measurements that are assigned to the user. | ||
|
||
[<img src="/deming/images/d1.png" width="600">](/deming/images/d1.png) | ||
|
||
Tha auditee can : | ||
|
||
- Search the list of measurements | ||
- Filter measurements by domain, scope, attribute or period. | ||
- sort the list by each column | ||
- select a measurement to perform | ||
|
||
### Performing an measurement | ||
|
||
When an auditee performs an mesurement, they can : | ||
|
||
- "Save" the measurement | ||
|
||
- "Make" the mesurement | ||
|
||
[<img src="/deming/images/d2.png" width="300">](/deming/images/d2.png) | ||
|
||
When the auditee clicks on : | ||
|
||
- "Save", the changes made are saved and the measurement remains in the list of measurements to be performed | ||
|
||
- "Make", the changes made are saved and the measurement changes to the status to be validated. From the auditee's point of view, the measurement is in the list of measurements performed. | ||
|
||
- If the auditee selects "Cancel", the changes are not saved and the auditee returns to the measuremet view. | ||
|
||
### Accepting / Rejecting a measurement | ||
|
||
Once an measurement has been carried out by an auditee, it changes status to "to be validated". | ||
|
||
This is shown by an hourglass next to the completion date in the list of measurements to be carried out: | ||
|
||
[<img src="/deming/images/d3.png" width="600">](/deming/images/d3.png) | ||
|
||
When the user clicks on the date next to the hourglass, they are taken to the measurement performed by the auditee. | ||
|
||
They can then accept or reject the measurement, adding a note in the measurement observations and, depending on the measurement score, propose an action plan and anmeasurement review date. | ||
|
||
[<img src="/deming/images/d4.png" width="600">](/deming/images/d4.png) | ||
|
||
If the user clicks on : | ||
|
||
- "Accept": the modified data is saved and a new measurement is created on the planning date entered. | ||
|
||
- "Reject": the modified data is saved and the measurement is returned to the auditee list of controls to be performed. | ||
|
||
- "Save": the data is saved and the user returns to the measurement view. | ||
|
||
- "Cancel": the user returns to the measurement view. |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
## Roles | ||
|
||
Les utilisateurs peuvent avoir plusieurs rôles. | ||
|
||
| Rôles | Permissions | | ||
| --- | ----------- | | ||
| Administrateur | | | ||
| Utilisateur | Peut effetuer des contrôles, créer de noue | | ||
| Audité | Peut | | ||
| Auditeur | Peut voir | | ||
| API | Peut accéder à l'API | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters