Application access for security groups

In the Security Groups application, you can grant users access to specific applications to refine security measures. Users can have read, insert, save, and delete access to an application. The application access of a security group is linked to site access. You can give a security group access to all sites, access to specific sites, or no access to sites.

You can grant users specific options within an application. For example, you can grant managers the right to read work order histories, costs, and warranties, but not to insert work orders or service requests. You must configure each application for read access so that administrative users can select additional application access options.

All applications and their corresponding access options appear in the SIGOPTION table, which contains the following types of column information:

The visible setting indicates whether a user can select the option in the Security Groups application. If an option is not visible, the option is granted with another option. The standard system options that are not visible include clear, bookmark, next, previous, viewhist, and drilldown. For example, when you grant read access, the invisible options, clear, bookmark, next, previous, viewhist, and drilldown, are granted.

The values for the also grants, also revokes, and prerequisite access options indicate relationships between options. For example, if you grant insert access for an application, the also grants access option grants save access.

Standard access options are associated with prerequisite, also grants, and also revokes, as described in the following table.

Table 1. Standard options for prerequisite, also grants, and also revokes access
Standard options Relationships between options
Standard prerequisite
  • Duplicate
  • Delete
Prerequisite
  • Insert
  • Save
Standard also grants
  • Insert
  • Read
Also grants
  • Save
  • Clear, bookmark, next, previous, viewhist, drilldown
Standard also revokes
  • Read
  • Save
  • Insert
Also revokes
  • All options
  • Insert, duplicate
  • Duplicate

The relationships in individual applications can sometimes vary. To view option access information for a specific application, use an SQL editor to search the SIGOPTION table.



Feedback