Authorise definitions

You use authorisations to determine whether users are allowed to view or change analyses, reports and documents. If so, you can further limit the access to specific analyses, reports and documents. You can also authorise views.

Analyses, reports, documents and views are referred to with the collective term ‘definition’; the authorisation is referred to with the term ‘definition authorisation'.

This chapter is based on the template environment, in which the authorisation is based on roles.

Description

AFAS Consultancy different template environments to configure the new environments. A template is an environment with the default configuration for a certain sector, for example for industry, care and welfare or education. By using template environments, you save a lot of time during the implementation phase.

The following definition types are present in Profit:

  • Reports, analyses, report sets (HR and Fiscaal) and documents.

    You can authorise the menu items for maintaining reports and menu items and actions for viewing reports.

  • Views
  • Alerts
  • Entry layouts
  • CLAs and CLA migration definitions (Payroll)
  • Data collections, GetConnectors, Headings in the Management Tool

It is advisable to authorise definitions in the following order (which is by increasing level of detail):

Authorisation level

Explanation

Menu authorisation

For definitions you must use separate functions to maintain and view them.

If, for example, you give a user access to Financial / Output / Report, he can view all the financial reports. You can apply authorisation based on data filters to limit access.

Action authorisation

In certain functions a user can start a report via an action. You can often authorise these actions separately.

Block definitions

If a definition should not be used, you can block it. A blocked report, for example, cannot be viewed by anyone (except for users with access to the maintenance functions).

Authorise definitions with data filters

The user is given access to specific definitions based on his role.

For example: a debtor monitoring employee only has access to debtor reports.

Authorisation of the contents is via data collections

A user has access to a certain definition, but only certain data is shown when he views it.

For example: an employee views the 'Employees' view, but this does not contain any executives.

Procedure

Note: 

The procedure for authorising views is explained separately.

  • Description per definition type
  • This subject contains details of authorisation per definition type.
  • Configure menu authorisation

    You set the menu authorisation to viewing or configuring definitions per user group (or per user).

  • Filter authorisation

    With filter authorisation you can limit the access of users to definitions. If a user has access to a certain function, he also has access to all the definitions available via this function. With filter authorisation you can limit access to definitions.

  • Authorise reports and analyses via data collections

    For reports and analyses you can apply filter authorisation to their contents. This means that a user can view the reports or analyses, but only if he is authorised to view the contents.

  • Authorise views

    Using the view authorisation, you can limit the access to certain views to specific user groups or users.