Permissions: Users, Groups & Records

Introduction

Permissions are a combination of groups and rights, leading to access to records. Each record is linked with a number of groups. Each user is also linked to a number of groups. Combining both allows for groups to mediate the access from users to records.

Schematic

This better illustrated in the following graph

A user has access to a record if they are a member of at least one group linked with the record. In the illustration above we can make the following observations

  • The group “Admin” is linked with all records, hence if a user, such as Cedric is a member of the group admin, they have access to all records

  • The group “Everyone” is linked with all users, hence if a record is linked with “Everyone” all users will have access to the record, such as is the case for “Image X”