Difference between revisions of "Access rights"

From Protemos Wiki
Jump to: navigation, search
(Client pools)
(Access rights for managers)
 
(11 intermediate revisions by the same user not shown)
Line 1: Line 1:
''Access rights for managers page: [https://cloud.protemos.com/site/access-rights https://cloud.protemos.com/site/access-rights]''
+
__FORCETOC__
 +
''Roles and access rights: [https://cloud.protemos.com/user/roles cloud.protemos.com/user/roles]''
 
----
 
----
 
Go to '''Settings⇾Access rights'''.
 
 
Use this menu screen to see levels of access rights in the system and the permissions that are associated with each level:
 
 
[[File:Acces rights.png|border|150px]]
 
__FORCETOC__
 
 
=='''Access rights for managers'''==
 
 
Using the data from this table, you may define a certain level of access rights for your managers according to your needs:
 
 
[[File:Managers and access rights table.png|border|1300px]]
 
 
To put it shortly, it means the following:
 
 
*'''Owner'''—the only person who can delete the account. Has full Administrator rights
 
 
*'''Administrator'''—has full access to everything.
 
 
*'''(Senior) project and finance manager'''—has access to everything, but cannot create users, change system settings, and see financial reports.
 
 
*'''(Senior) project and client finance manager'''—the same as “Senior project and finance manager”, but all vendor-related finances are hidden from him. Select this if you want to hide what you pay to your vendors.
 
 
*'''(Senior) project and vendor finance manager'''—the same “Senior project and finance manager”, but all client-related finances are hidden from him. Select this if you want to hide what your clients pay to you.
 
 
*'''(Senior) project manager'''—a project manager who cannot see any finances. Select this for those managers who should not enter and see any finance-related info.
 
 
'''Senior''' means that the manager can see the projects of other managers. So if you want your managers to see only own projects, select the roles without “Senior”.
 
 
*'''Finance manager'''—that’s the role for your accountant. It lets the user create invoices based on payables and receivables entered by project managers, and also enter payments from clients and to vendors. The finance manager cannot create or edit projects or assign jobs to vendors.
 
 
*'''Client manager'''—can enter clients and their prices into the database. Everything else is hidden for this role.
 
 
*'''Vendor manager'''—can enter vendors and their prices into the database. Everything else is hidden for this role.
 
 
*'''Client and vendor manager'''—can enter clients and vendors and their prices into the database. Everything else is hidden for this role.
 
 
=='''Access rights for clients and vendors'''==
 
 
[[File:Acces r cl vend.png|border|1000px]]
 
----
 
<span style="color:red">Features described below will be available with the forthcoming system release.</span>
 
 
''Roles and access rights: [https://cloud.protemos.com/site/access-rights https://cloud.protemos.com/site/access-rights]''
 
----
 
 
 
Go to '''Settings ⇾ Access control ⇾ Roles '''.
 
Go to '''Settings ⇾ Access control ⇾ Roles '''.
 
Use this menu screen to see levels of access rights in the system and the permissions that are associated with each level:
 
  
 
[[File:Settings - access control - roles.png|border|300px]]
 
[[File:Settings - access control - roles.png|border|300px]]
__FORCETOC__
 
  
 
=='''Access rights for managers'''==
 
=='''Access rights for managers'''==
  
<span style="color:red">Features described below will be available with the forthcoming system release.</span>
+
This table shows the levels of access rights in the system and the permissions that are associated with each level. Using the data from it, you may define a certain level of access rights for your managers according to your needs:
 
 
Using the data from this table, you may define a certain level of access rights for your managers according to your needs:
 
  
[[File:Role-based access control table.png|border|1200px]]
+
[[File:Role-based access control.1.png|border|1200px]]
  
 
To put it shortly, it means the following:
 
To put it shortly, it means the following:
Line 77: Line 26:
 
*'''Project manager''' — a manager who cannot see any finances. Select this for those managers who should not enter and see any finance-related info.
 
*'''Project manager''' — a manager who cannot see any finances. Select this for those managers who should not enter and see any finance-related info.
  
*'''Finance manager''' — that’s the role for your accountant. It lets the user create invoices based on payables and receivables entered by project managers, and also enter payments from clients and to vendors. The finance manager cannot create or edit projects or assign jobs to vendors.
+
 
 +
*'''Sales manager''' — a manager who can create quotes and projects but cannot access jobs as well as job tenders. This role also does not allow to access vendor profiles and all vendor-related finances.
 +
 
 +
*'''Accountant''' — this role lets the user create invoices based on payables and receivables entered by project managers, and also enter payments from clients and to vendors. The accountant cannot create or edit projects or assign jobs to vendors.
  
 
*'''Client and vendor manager''' — can enter clients and vendors and their prices into the database. Everything else is hidden for this role.
 
*'''Client and vendor manager''' — can enter clients and vendors and their prices into the database. Everything else is hidden for this role.
Line 85: Line 37:
 
*'''Vendor manager''' — can enter vendors and their prices into the database. Everything else is hidden for this role.
 
*'''Vendor manager''' — can enter vendors and their prices into the database. Everything else is hidden for this role.
  
*'''To-do Employee''' — this role allows a user to access to-dos assigned to them.
+
*'''To-do employee''' — this role allows the user to create to-dos and access to-dos assigned to them.
  
 
=='''Access rights for clients and vendors'''==
 
=='''Access rights for clients and vendors'''==
 
<span style="color:red">Features described below will be available with the forthcoming system release.</span>
 
  
 
[[File:Clients and vendors table.png|border|1200px]]
 
[[File:Clients and vendors table.png|border|1200px]]
  
 
=='''Client pools'''==
 
=='''Client pools'''==
 
<span style="color:red">Features described below will be available with the forthcoming system release.</span>
 
  
 
By default, managers can access all the client profiles and other client-related objects according to their role but you can limit the access of your managers to specific clients according to your needs.
 
By default, managers can access all the client profiles and other client-related objects according to their role but you can limit the access of your managers to specific clients according to your needs.
 
To do so, you can create and assign a client pool to certain managers. For more info, please check the <U>[[Client pools|'''Client pools''']]</U> page.
 
To do so, you can create and assign a client pool to certain managers. For more info, please check the <U>[[Client pools|'''Client pools''']]</U> page.

Latest revision as of 12:07, 8 February 2023

Roles and access rights: cloud.protemos.com/user/roles


Go to Settings ⇾ Access control ⇾ Roles .

Settings - access control - roles.png

Access rights for managers

This table shows the levels of access rights in the system and the permissions that are associated with each level. Using the data from it, you may define a certain level of access rights for your managers according to your needs:

Role-based access control.1.png

To put it shortly, it means the following:

  • Owner — the only person who can delete the account. Has full Administrator rights
  • Administrator — has full access to everything.
  • Project and finance manager — has access to everything, but cannot add managers, change system settings, and see financial reports.
  • Project and client finance manager — the same as “Project and finance manager”, but all vendor-related finances are hidden from them. Select this if you want to hide what you pay to your vendors.
  • Project and vendor finance manager — the same “Project and finance manager”, but all client-related finances are hidden from them. Select this if you want to hide what your clients pay you.
  • Project manager — a manager who cannot see any finances. Select this for those managers who should not enter and see any finance-related info.


  • Sales manager — a manager who can create quotes and projects but cannot access jobs as well as job tenders. This role also does not allow to access vendor profiles and all vendor-related finances.
  • Accountant — this role lets the user create invoices based on payables and receivables entered by project managers, and also enter payments from clients and to vendors. The accountant cannot create or edit projects or assign jobs to vendors.
  • Client and vendor manager — can enter clients and vendors and their prices into the database. Everything else is hidden for this role.
  • Client manager — can enter clients and their prices into the database. Everything else is hidden for this role.
  • Vendor manager — can enter vendors and their prices into the database. Everything else is hidden for this role.
  • To-do employee — this role allows the user to create to-dos and access to-dos assigned to them.

Access rights for clients and vendors

Clients and vendors table.png

Client pools

By default, managers can access all the client profiles and other client-related objects according to their role but you can limit the access of your managers to specific clients according to your needs. To do so, you can create and assign a client pool to certain managers. For more info, please check the Client pools page.