The Role Management module provides a simple interface to manage user roles. Privileges or access rights to the different Ambience modules can be grouped together into roles. Adding a user to a role collectively grants the privileges to the said user. This is particularly useful and makes it easy to maintain when there are 2 or more users requiring the same set of privileges.
Another option for assigning roles to existing users is to use the User Management module. There is no difference in the effect of role assignments between assigning roles to users through the User Management module and assigning users to roles through the Role Management module.
- Add role
- Edit role
- Add and remove privilege
- Add and remove user
- Delete role
- Refresh list
|Role Management||Allows adding, modifying and deleting roles.||mod-roles|
To add a role, start by clicking on the “Add” button on the upper right corner of the page.
On the “Add” panel, set the new role’s properties, privileges and users.
|No.||Field||Description||Mandatory||Input Type||Constraints||Default Value|
|1||Name||Unique name assigned to the role that would be used as its identifier.||Y||Text field||String made of alphanumeric characters and dashes (-) only.
Special characters such as punctuations, white spaces and other symbols are not allowed. The value must not exist in the current list. The value is case-sensitive.
|2||Description||Description of the role.||N||Text field||Any text||Empty string|
|3||Privileges||List of privileges that are assigned to the role.||N||Checkbox||Multiple values can be selected. All roles are listed as available options.||No value selected|
|4||Users||List of users that are assigned to the role.||N||Checkbox||Multiple values can be selected. All enabled users are listed as available options.||No value selected|
Under “Properties”, key in the name to be given to the role into the “Name” field. Only the “Name” field is mandatory and it must be a unique value (not used by any other role).
Select any of the privileges and users, if necessary.
Click on the “Save” button located on the upper right corner of the “Add” panel to proceed with adding the new role. Clicking on the “Cancel” button aborts the action.
To modify an existing role’s attributes, click on the “Edit” icon under the “Actions” column corresponding the said role.
The “Edit” panel displays the selected role’s attributes. The same fields and constraints in Add Role are applied.
Click on the “Save” button located on the upper right corner of the “Add” panel to proceed with saving the changes made to the existing role. Clicking on the “Cancel” button aborts the action and retains the role’s attributes prior to opening the “Edit” panel.
Note that changes would only take effect upon the next login of the users who are affected (e.g. adding/removing of users, adding/removing of privileges of groups with assigned users). It is advised that the affected user logout then login again if the said user is logged in while the changes were being made.
Deleting a role removes it from the records, which means another role with the same name as the deleted role can be added.
To delete an existing role from Ambience, click on the “Delete” icon under the “Actions” column corresponding the said role.
There is an option to undo the deletion. A notification with an “Undo” button appears right after clicking on the “Delete” icon.
Upon clicking on the “Undo” button, the deleted role is restored and is added back to the list of roles.
Note that after successfully deleting a role, users assigned to this role would no longer have the privileges tagged to the role, unless the same privileges are tagged to the users as extra privileges. Changes would only take effect upon the next login of the users who are affected (e.g. adding/removing of users, adding/removing of privileges of groups with assigned users). It is advised that the affected user logout then login again if the said user is logged in while the changes were being made.
After performing actions (e.g. add role, delete role) on the browser window/tab, the list is reloaded to display the updated data. The manual “Refresh” button is available and is particularly useful if there are others making changes on the same page and/or the making changes to role assignments in the User Management module.
The “Refresh” button is available on the upper right corner of the page. Clicking on it reloads the list of users.
The search bar appears on the upper left corner of the page.
This provides an easy way to search through the role list. It is case-insensitive and displays records that have the entered search value in any of the values of the fields below: