new:user_and_security
This is an old revision of the document!
User's & Security
- a very fine-grained level of detail in assigning permissions.
- User-level security allows the database administrator to group users with similar needs into common pools. Permission can then be granted to work group instead of to individual users, easing the administration of permissions.
* The importance of User's, Roles and Permissions
- Users are the people
- roles are their functions,and
- permissions define what authorizations those functions have.
Roles
- This is a principle by which developers create a systems that limit access or restrict operations according to a user's constructed role within a system. This is also often called role-based principle to ensure that authorized users do not gain access to privileged information.
Team.
- After you have defined the Team, you can link the Team member to the Team and Role. By doing so, you can access to any of the transaction entry by Team.
Limit
- The function on user Limit is activated for a particular transaction type only if you have set any limit for at least one user for one transaction type.
Visibility
- Once you set up any value for a particular context, all users not satisfying the condition will be barred from viewing any record in all lists in the system.
The best practices for securing your system users, roles,& permissions are based on the following ideas:
- Rethink your roles
- Know the defaults
- Evaluate your elevated permissions
/srv/www/htdocs/wiki/data/attic/new/user_and_security.1474000641.txt.gz · Last modified: 2016/09/16 04:37 by ca
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
