| 6 | | 1. Briefing |
| 7 | | 1. Access control is able to create and edit |
| 8 | | 1. Read/write and read only should be separate for each role to each module. |
| 9 | | 1. For registry users, default access is limited since registry is open to public. |
| 10 | | 1. Each role is separate and independent. Each user is open to give multiple roles. |
| 11 | | 1. There are 3 types of confidentiality level for map. Each level is an independent module for role setting. |
| 12 | | 1. Special access control for “fulfill the request” |
| 13 | | 1. Requirement – Create and edit role |
| 14 | | 1. Admin users are able to create role |
| 15 | | 1. Steps for role creation, all are required |
| 16 | | 1. Click “create a role” button |
| 17 | | 1. Name the role. Return error message for existing role name. |
| 18 | | 1. Check the access for modules by checking the access level, see 2.3.3 |
| | 6 | * Briefing |
| | 7 | * Access control is able to create and edit |
| | 8 | * Read/write and read only should be separate for each role to each module. |
| | 9 | * For registry users, default access is limited since registry is open to public. |
| | 10 | * Each role is separate and independent. Each user is open to give multiple roles. |
| | 11 | * There are 3 types of confidentiality level for map. Each level is an independent module for role setting. |
| | 12 | * Special access control for “fulfill the request” |
| | 13 | * Requirement – Create and edit role |
| | 14 | * Admin users are able to create role |
| | 15 | * Steps for role creation, all are required |
| | 16 | * Click “create a role” button |
| | 17 | * Name the role. Return error message for existing role name. |
| | 18 | * Check the access for modules by checking the access level, see 2.3.3 |
| | 19 | * Role list & Steps for role edition |
| | 20 | * Display as below |
| | 21 | || Role name / Modules || Org || Shelter || RMS || Hospital || Admin || |
| | 22 | || Camp Admin || R || R/W || R/W || R || - || |
| | 23 | || Camp Volunteer || R || R/W || R || - || - || |
| | 24 | * Find the role by searching role name or browsing role list. |
| | 25 | * Click the role name and link to the role editing page as below |
| | 26 | |
| | 27 | || Role name camp amdin Access control setting || |
| | 28 | || Org || none || Read /write || Read only || |
| | 29 | || Shelter || none || Read /write || Read only || |
| | 30 | || RMS || none || Read /write || Read only || |
| | 31 | || [save] || |
| | 32 | |
| | 33 | * Module access and read/write or read only is editable. |
| | 34 | |
| | 35 | * Requirement – Read/write and read only |
| | 36 | * When the read only is checked for a specific module for a role, the write button should be gray out |
| | 37 | * For a user, read/write is able to rewrite read only from two roles for the same module. |
| | 38 | * Example: If user C has been given role A and role b, user c is able to read and write for module A. |
| | 39 | |
| | 40 | || Role A || Module A – Read/write || |
| | 41 | || || Module B – Read only || |
| | 42 | || Role B || Module A – Read only || |
| | 43 | || || Module B – Read only || |
| | 44 | |
| | 45 | * Requirement – Role and users |
| | 46 | * Admin users is default to read/write for all modules and are able to give roles to each user. |
| | 47 | * User info edit page for each user |
| | 48 | * Put “user profile” into Edit personal Details page by adding one more tab. |
| | 49 | * Move the dropdown of login out and instead of the link of the user name to Edit personal Details page. |
| | 50 | * Put “Logout” beside user name. |
| | 51 | |
| | 52 | * Requirement – Access to Mapping special |
| | 53 | * Three confidentiality level for map, basic map, advanced level, and top level |
| | 54 | * Each level has different layers form Eden map and which will be set by coding. |
| | 55 | * Each level is as a separate module in role creation process. |
| | 56 | |
| | 57 | * Requirement – OpenID usage |
| | 58 | * OpenID login is enable for both Agasti and Eden of SahanaTW. However, ACL of the account should be applied with openid login. |
