Role Based Security - Permissions
The following is a listing of the Products using Role Based Security, their available Permissions and example scenarios.
External Job Posting
Permission Name | Permission Description |
|---|---|
View Only My Postings | User can view only those postings that they are assigned to as the Hiring Manager on the Job Posting |
Shortlist Applications | User can update the status of an application to Shortlist |
View All Postings | User can view all postings across all Hiring Manager assignments (locations) |
Run Tasks | User can view tasks and override the schedule to run a task immediately |
Modify System Settings | User can modify the EJP system settings |
Modify Custom Settings | User can modify the EJP custom settings |
Modify Custom Pages | User can create and modify custom pages |
Modify Custom Fields | User can create and modify custom fields |
Modify System Users | User can view system users and revoke user access |
Block Applicant | User can set the applicant status to blocked |
Below is an example of a Role based structure for External Job Postings (Note: each district will define their own roles and assign permissions as per their district process):
Sample Roles and their EJP duties:
- Principals – review the job posting applications at their location, and shortlist applicants.
- HR Clerk – manages the day-to-day activity of EJP, including creating / modifying custom fields, pages, and custom settings. Can view all job postings across the district and shortlist applicants.
- HR Manager – manages the EJP product with access to system settings, user settings and tasks, as well as having access to view all job postings across the district.
Role | Inherit Role | View Only My Postings | Shortlist Applications | View All Postings | Run Tasks | Modify System Settings | Modify Custom Settings | Modify Custom Pages | Modify Custom Fields | Modify System Users | Block Applicant |
|---|---|---|---|---|---|---|---|---|---|---|---|
HR Manager | HR Clerk | X | X | X | X | X | X | X | X | X | |
HR Clerk | Principal | X | X | X | X | X | X | ||||
Principal | X |
Journal Entry
Permission Name | Permission Description |
|---|---|
Create Journal Entry | User will be able to add/edit/delete a journal entry |
Define Reusable Template | User will be able to add/edit/delete a reusable journal entry template |
Define Recurring Schedule | User will be able to add/edit /delete a recurring journal entry schedule |
View Recurring Schedule | User will be able to view a recurring journal entry schedule |
Search Postings | User will be able to select a batch and view associated journal entry details |
Reverse Batch | User will be able to reverse a closed journal entry batch |
Append Batch | User will be able to append to an open journal entry batch |
View Journal Entry Batch Activity | User will be able to view journal entry batch activity |
Import Journal Entry | User will be able to import a Journal Entry |
Has Batch Type Security | User has batch type code security restrictions when creating Journal Entries |
| View Posted Audit | User will be able to view posted journal entries |
| Approve Journal Entry | User will be able to approval journal entires |
| Post Journal Entry | User will be able to post journal entries |
| View Journal Entry Diagnostics | The user can view Journal Entry diagnostics |
Below is an example of a Role based structure for Journal Entry, each district will have their own configuration based on the Roles that they define for this module.
Sample Roles:
- Finance Manager
- Accounts Receivable Clerk
- Accounts Payable Clerk
Role | Inherit Role | Create Journal Entry | Define Reusable Template | Define Recurring Schedule | View Recurring Schedule | Search Postings | Reverse Batch | Append Batch | View Journal Batch Activity | Import Journal Entry | Has Batch Type Security |
|---|---|---|---|---|---|---|---|---|---|---|---|
Finance Manager | Accounts Receivable Clerk | X | X | X | X | X | X | X | X | X | |
Accounts Receivable Clerk | X | X | X | X | X | X | X | X | |||
Accounts Payable Clerk | X | X | X |
Purchasing Card
Permission Name | Permission Description |
|---|---|
Import File | The user will be able to upload a file, define file mapping, and import the file |
Send Notifications | The user will be able to send district wide notifications to selected groups |
View All Transactions | The user will have access to all transactions across the district |
View Location Transactions | The user will have access to all transactions at their Location |
View My Transactions | The user will have access to their own transactions only |
Supervisor Transactions | The user will have access to only their subordinates' transactions |
Final Review | The user will be able to complete the final review of transactions before invoicing |
Create Invoice | The user will be able to generate and submit an invoice |
Search | The user will be able to search historical transactions. This permission is tied to the users' transaction permission |
View Activity | The user will be able to view all transaction record activity across the district |
View Settings | The user will be able to configure all settings |
| View Location Transactions & Submit for Supervisor Review | The user will be able to view location transactions and submit these for supervisor review |
| View Purchasing Card Diagnostics | The user can view Purchasing Card diagnostics |
Below is an example of a Role based structure for Purchasing Card, each district will have their own configuration based on the Roles that they define for this module.
Sample Roles:
- Finance Manager
- School Principal
- Supervisors
- Purchasing Card Holders
Role | Inherit Role | Import File | Send Notifications | View All Transactions | View Location Transactions | View My Transactions | Create Invoice | Search | View Activity | Supervisor Transactions | Final Review | View Settings |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
Finance Manager | X | X | X | X | X | X | X | X | X | X | ||
School Principal | Supervisors | X | X | X | X | |||||||
Supervisors | Purchase Card Holders | X | X | X | ||||||||
Purchase Card Holders | X | X |
Other Products and Web Services
| Module / Web Service | Permission Name | Permission Description |
|---|---|---|
| Security Builder | Modify Security Builder | The user will be able to launch Security Builder |
| Role Based Security | View Role Based Security Diagnostics | The user will be able to view Role Based Security diagnostics |
| Single Sign On | Can Login to Atrieve with Single Sign On | The user can Login to Atrieve Web with Single Sign On |
| Single Sign On | View Other User Info | The user can view other user info |
| Staffing Notification | Staffing Notification Processing | The user will have full access to Staffing Notification Processing module from the Web Portal |
| Staffing Notification | View Staffing Notification Processing | The user will have with view-only access to Staffing Notification Processing module from the Web Portal |
| Workflows | View Workflows Diagnostics | The user can view Workflows diagnostics |
| Workflows | Modify Workflows | The user can modify workflows |
| Workflows | Publish Workflows | The user can publish workflows |
| Workflows | Modify Settings | The user can modify Workflows settings |
| Workflows | View Activity | The user can view Activity in Workflows |
| Onboarding | View Onboarding | The user can view Onboarding |
| Finance Administration | Has Batch Type Security | The user will have batch type security |
Forms | View COVID Screening Activity | The user will have access to view COVID Screening Activity |
| Forms | View COVID Attestation Report | The user will have access to view the COVID Attestation Report |
| Authentication Service | View Audit Log Entries | The user will be able to view Authenticaion Service Audit Logs |
| Authentication Service | View Authentication Service Diagnostics | The user will be able to viewAuthentication Service diagnostics |
| Document Service | View Document Service Diagnostics | The user will be able to view document service diagnostics |
| Document Service | Can View Documents | The user will be able to view documents |
| Document Service | Can View My Documents | The user will be able to view view their own documents |