Managing roles
You can create custom roles with a custom set of permissions to control the specific actions certain users can perform or the specific applications, dashboards, activeboards or panels they can access in each domain.
Create a custom role
- Go to Administration → Roles.
- All existing roles, including the default and custom, are listed in vertical tabs on the left. The view area shows the permissions of the selected role, divided into different tabs that represent different accessible areas of the Devo web app.
- To create a new role, click the New Role button on the top right of the window.
Enter a Name and Description for the new role.
Then, in the Permissions tab, you can see that most of the permissions have a View and a Manage level to better define the actions you want the users to perform when they have that role assigned. Check the boxes of the required permissions(s) and level(s).
Hover the mouse over a permission in the list and click the question mark icon to see its description. For a complete list of the permissions that you can add to a custom role and the differences between their View and Manage levels, go to Role permissions.
- There are some cases in which you might need to perform an additional action after checking the box of the permission. Some examples are Finders or Query priority:
When you select View for Finders to give the role access to the finders in the Data Search, the Finders drop-down list will appear above. Select Default to give the role access to the default finder, or choose one of the custom finders available in your domain.
Why am I not seeing the Finders drop-down list?
Note that the Finders drop-down list will not appear if the role has the Finders manage-level permission assigned, since this permission allows users to manage all the finders in the domain, including custom finders. The role must only have the Finders view-level permission.
- When you select Manage for Query priority to allow the role to choose from the predefined query priority range, two drop-downs appear at the bottom. Scroll down and choose the Default query priority and Maximum query priority available. You can find more information in the Query priority article.
In the rest of the tabs, you can assign specific resources (applications, dashboards, panels, Activeboards and Alerts) to the role. Learn more in Assign resources to a role.
- Click Create. The new custom role will appear in the list of roles on the left. You can now assign this role to new or existing users.
Clone an existing role
Another way of creating a new role is by cloning an existing role that already has a similar set of permissions and allowed applications. You can clone both default and custom roles.
- Go to Administration → Roles.
- Select the original role from the list of vertical tabs on the left.
- Click the Clone Role icon
in the upper-right. of the window. An exact copy is created with the same list of permissions and resources and appears on the list of roles to the left. - Select the new role from the list on the left and click the Edit icon
next to Name and Description. Write the desired name and description and click outside the field to apply the changes. Make the desired changes to the permissions and resources and click Apply Changes.
If you try to select another role without applying the changes, you will get a warning message prompting you to save them if you do not want to lose them.
Modify or delete a custom role
When you modify or delete a custom role, the permissions for users with that role will change the next time they log in to the domain.
- Go to Administration → Roles.
- Select the custom role that you want to modify or delete from the list of vertical tabs on the left.
- To delete the role, simply click the Delete icon
in the upper-right of the window and accept the warning message that appears. - To modify the role, change the permissions and resources granted for the role or edit the name or description. Then, click Apply Changes.
- To delete the role, simply click the Delete icon