Managing user permissions
Permissions in Kademi are given to user groups by adding roles, those permissions are then conveyed to users who are in those groups.
The permissions given by a group can be contextual to either an organisation or a repository (eg a website)
To understand this concept its important to first understand the Kademi concept of a "membership"
- a person
- a user group
- an organisation
These 3 things together form a membership.
Putting an example into plain english reads like this .. "Sarah is a Pharmacist in Sydney City Pharmacy".
In this example we have:
- person: Sarah
- group: Pharmacist
- organisation: Sydney City Pharmacy
As another example - "Bob is a Manager in the Finance Department"
- person: Bob
- group: Manager
- organisation: Finance Department
You can then configure a group to have context within the organisation a user is linked to. So for example the Pharmacist group might have a role like:
"Product manager in their own organisation"
And the Manager group might have:
"User Administrator in their own organisation"