How to Assign Application User Privileges
Prior to running a HostedDatabase.com application, the admin user must create one or more application users and associate them with the application. This process is required because applications may be used by workgroups that need data-level security to protect information on a need-to-know basis. Here are a few simple steps to
follow:
| Step 1 |
Click the “Update and maintain application users” tool from
the Control Panel.
|
| Step 2 |
Click on the “New” button to create a new application user.
|
| Step 3 |
Enter the following information for the user:
- First Name – first name of the application user
- Last Name – last name of the application user
- Username – unique name for login purposes.
- Password – password for login purposes
|
| Step 4 |
Click the “Add User” button to save the new user information. Any number of application users can be defined regardless of the number of user seats in your HostedDatabase.com subscription account. You are limited with concurrent user access to your applications depending on the number of user seats. For example, if your subscription has only one user seat, you can create 5 different application users, but only one will be able to access your applications at a time.
|
| Step 5 |
You should now see the new user in the User Name pull-down list on the Application User Properties screen. With the new user selected in the list, click the “Edit” button.
|
| Step 6 |
To associate this user with a previously created application, simply select the application name from the pull-down list. It is important to also select data access privileges as this time otherwise the user will be able to login to the application but not do anything. You’ll see the following checkboxes:
- View All Records – the user is able to see all records entered by all users.
- Add Records – the user is able to add new records. The user will “own” these new records.
- Update Records – the user is able to update existing records.
- Delete Records – the user is able to delete existing records.
- Disallow Access – the user is not able to access data records in this application (the default when you create a new user).
|
Various types of data access for application users can be achieved by combining the above properties in different ways. Here are some examples:
View All, and Add, and Update, and Delete – this is a sort of super-user in that the user will have access to all other user’s records including his own. This user can see all data records, as well as change or delete any record store in the application.
Add, and Update, and Delete – this is a typical user configuration in that the user has complete access to his own records, but nobody else’s. New records entered are associated with the user.
View All – a user having only the View All privilege can see everything, but change nothing, and cannot add records.
Add, and Update – assigning only these privileges to a user may be appropriate for a data entry operator. The user can type in new records, and change them but nothing else.
Any combination of privileges is allowed. It is up to the admin user to assign privileges to application users as required.
|
