Overview
Version
| Report Server Version |
|---|
| 11.0 |
Application Scenario
The previous two documents have introduced how to assign permissions based on department positions/roles. However, permission control based on department positions or roles may hardly realize the following scenarios.
Some users need to temporarily view a certain template.
A leader who holds multiple positions needs to view some templates, but his/her departments and roles have no permission.
You need to assign permission to a specific person.
You can assign permission to users individually without being limited by their departments or roles.
Function Description
Users refer to those who have been added in the platform.
Log in to the decision-making system as the admin and choose System Management > Permission Management > Common Permission Configuration > User's Final Permission to assign relevant permission to users, as shown in the following figure.
User Selection
Log in to the decision-making system as the admin and choose System Management > Permission Management > User's Final Permission. All users that can be assigned permission to are displayed, as shown in the following figure.
All users are displayed by default. You can also click User Filter to filter part of the users, as shown in the following figure.
User Permission Inheritance
If no individual user permission is assigned, the user's permission will be a union of permissions assigned to the user's department, role, and position. The user's permission on sub-templates is the same as that on the parent directory.
For instance, the user eoco is in the financial department, which has View permission on the Business Application directory, as shown in the following figure.
Choose User's Final Permission > Ai Ke (eoco). You can see that eoco has View permission on the Business Application directory, and you can click the xxx icon to view that the permission source, as shown in the following figure.
Individual User Permission Assignment
Admins can assign permission to each user individually.
Choose System Management > Permission Management > Common Permission Configuration > User's Final Permission as the admin and assign permissions to users.
An alert window pops up when you configure the user permission. After configuration, a yellow icon appears on the setting item, indicating that permission is individually set for this user. Gray icons appear on the sub-items, indicating that permission is individually set for this user on the parent item, as shown in the following figure.
Note:The alert window and the icons appear on the setting item on which permission is changed (whether assigned or revoked)
Permission individually assigned to a user (indicated by the icon) prevails over that assigned to the user’s department positions and roles.
You can also assign permission to users individually and restore the inherited permission under System Management > Template Authentication (when Authenticate Role Permission is enabled).
Inherited Permission Restoration
Permission Restoration on the Current Tab Page
Note:The super admin can click Restore Inherited Permission to clear all permission individually set for the selected user on the current tab page and restore permission inherited from the department/role, as shown in the following figure.
Single Permission Restoration
The super admin can select a user and click the yellow icon to clear permission individually set for the user and restore permission inherited from the department/role, as shown in the following figure.
Note:Assume that you have assigned permission to a parent node and a child node separately.
If you only click the yellow icon next to the child node, the permission on the child node will be restored to permission inherited from the parent node, and the icon will turn gray.
If you click the yellow icon next to the parent node, both the permission of the parent node and the child node will be restored.
Logic for Permission to Take Effect
If a user occupies positions or roles of multiple departments among which hierarchic structures exist, you need to follow the permission logic when assigning permissions.
For details, see Logic for Peer-Level Permissions to Take Effect and Logic for Hierarchical Permissions to Take Effect.
Notes
Scenario One
If you have assigned permission individually to a certain user, a prompt box will appear when you assign different permission to the user's department/role.
Click the blue link in the prompt box to open the Permission Management page in a new browser tab page. You can switch to the User's Final Permission tab page to view/restore the user's permission.
Scenario Two
If you have assigned Authorization permission on a child node to a user, and assigned Authorization permission on a parent node to the user's department, and lastly assigned Authorization permission on the child node to the user's parent department, a prompt box similar to the following one will appear when you revoke Authorization permission assigned to the parent department on the child node.
