Skip to content
This repository was archived by the owner on Mar 30, 2022. It is now read-only.

7. Authorization (User Roles and Entitlements)

Jump to bottom
Tim Davis edited this page Dec 8, 2017 · 1 revision

Roles

Roles are used to define what type of user is interacting with the system. Roles provide varying levels of access to the system and well as provide the ability to charge different rates to different users. A user can only have one role. Users can be assigned Roles directly through the 'Access Control > Users' page, or inherit them indirectly through a contact standing or corp/alliance standing on the 'Access Control > Authorization' page. The following are the available Roles and their intended purpose in the application.

  1. ROLE_SYSTEM_ADMIN: Has all other roles plus the ability to alter system configurations such as user authorization - GOD MODE!
  2. ROLE_TRANSACTION_ADMIN: Has all ADMIN roles below
  3. ROLE_BUY_ADMIN: Has ability to view and manage corporate buy contracts (purchasing contracts from members) as well as all roles of ROLE_ADMIN
  4. ROLE_SELL_ADMIN: Has ability to view and manage corporate sell contracts (selling contracts to members) as well as all roles of ROLE_ADMIN
  5. ROLE_SRP_ADMIN: Has ability to view and manage corporate SRP requests as well as all roles of ROLE_ADMIN
  6. ROLE_ADMIN: Is able to view basic ADMIN functions that do not require a more specific role and has all roles of ROLE_EIDTOR
  7. ROLE_EDITOR: Can Edit/Create 'Pages', as well as do anything a ROLE_MEMBER can
  8. ROLE_MEMBER: Is a base user, gets 'Member Tax Rate' applied in settings
  9. ROLE_ALLY: Is a base user, gets 'Ally Tax Rate' applied in settings
  10. ROLE_FRIEND: Is a base user, gets 'Friend Tax Rate' applied in settings
  11. ROLE_Guest: Is a base user, gets 'Guest Tax Rate' applied in settings
  12. ROLE_OTHER1: Is a base user, gets 'Other1 Tax Rate' applied in settings
  13. ROLE_OTHER2: Is a base user, gets 'Other2 Tax Rate' applied in settings
  14. ROLE_OTHER3: Is a base user, gets 'Other3 Tax Rate' applied in settings

Entitlements

Entitlements are used to define what features a user can access. They operate the exact same as ROLES from a security perspective (that's why they are prefixed with 'ROLE'), but differ in three ways: they do not inherit from other entitlements, a user can have 0 or more Entitlements (instead of exactly 1 ROLE), and they are additive to ROLES and each other. Entitlements can be assigned to users the same way as Roles. The following are the available Entitlements and their intended purpose in the application.

  1. ROLE_ENTITLEMENT_BUYBACK: Has access to 'Sell Orders' pages/widgets, allowing them to sell order (the system buys from them)
  2. ROLE_ENTITLEMENT_SALES: Has access to 'Buy Orders' pages/widgets, allowing them to place a buy order (the system sells to them)
  3. ROLE_ENTITLEMENT_PAGES: Has access to 'Pages' pages/widgets, allowing them to see content posted there
  4. ROLE_ENTITLEMENT_SRP: Has access to 'SRP' and 'My Recent Losses' pages/widgets, allowing them to request SRP

Clone this wiki locally