Versions Compared

Old Version 5

changes.mady.by.user Magdalena Szpunar

Saved on

compared with

New Version Current

changes.mady.by.user Marta Golab

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents

...

Inheritance of Roles

In BigPicture 8, roles are always inherited from upper-level Boxes. Therefore, security roles granted in the Home (root) Box apply to all sub-Boxes in the hierarchy (all sub-Boxes and their children nested under the Home Box). For example, if someone is a Box Admin of the Home (root) Box, they automatically have the same permissions in all sub-Boxes through the hierarchy.

...

When you create sub-Boxes, the following roles are inherited:

...

  • Box Types - this page contains information on configuring the default Security settings that work as a template when you create new Boxes and the Inheritance mode.

  • Global Roles - this page explains App Administration settings and how access to the App is granted to, for example, Jira users.

  • Box configuration - this page explains what roles are available within the App and how to change them for an individual Box.

  • Technical Configuration of the App - this page gives you information on how to activate/deactivate the use of roles within the App.

  • Security (Overview module) - this page explains the impact of setting up security Roles for the Home (root) Box and lists available roles.

BigPicture 7

BigPicture 8

Comment

App Admin (Global Role)

  • App Admin

With this security role, you have administrative access to every Box, Gadget, and to the Business Administration.
As an App Admin, you can see all the created Boxes and access configuration areas. 

Global User

  • App User

  • Box Viewer (in all public Programs)

  • Box Viewer in Security template of a "Program" Box type

A role still exists in BigPicture 8, but the access has changed:

  • a Global Viewer gets access to the App itself (sees it in the header - the user can access the App and their user profile in the App drop-down at the top) but can't automatically access any Boxes.

Migration:

  • Users are added as Viewers to all public Boxes.

  • Users are added as Viewers to the security role template for a "Program" Box type - this means that every time a new Box is created using the "Program" type, a user is granted Viewer access to the new Box.

  • Global Role - users are added as Users of the App (Administration > Security).

Changing/deleting access options:

  • You can remove the user from the Security section in Box Configuration in each Box.

  • Remove the user from the "Program" Box type by modifying the template in Security Section. Then, a user will not be added to every newly created Box.

Global Editor

  • App User

  • Box Editor in Home (root) Box

Global Editor role doesn't exist in BigPicture 8

Migration:

  • Users are added as Box Editors to the Home (root) Box - this makes them Editors of all Boxes (including previously private Programs).

  • Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.

Changing/deleting access options:

  • Inherited roles are not listed in sub-Boxes - this means that if you don't want a user to have Editor access to all Boxes, you have to remove them from the Home (root) Box. You can't selectively remove their Editor access from each Box - they must be removed from Box Configuration of the Home (root) Box and granted new access to Boxes.


Global Program Creator

  • App User

  • Box Viewer in all public Programs

  • Box Viewer in Security template of a "Program" Box type

  • sub-Box Creator in Home (root) Box

Global Program Creator role doesn't exist in BigPicture 8

Migration:

  • Users are added as Box Viewers in previously public Programs.

  • Users are added as sub-Box creators to the Home (root) Box - as a result, they can add new Boxes under Home (root). The sub-Boxes do not inherit this role.

  • Users are added to the Security Role template of the "Program" Box type.

  • Global Role - users are added as App Users (Administration > Security) - this grants them access to the App itself.

Changing/deleting access options:

  • Sub-Box Creator role is not inherited. This role itself doesn't grant user Box access of any kind - it just lets them create sub-Boxes. If you don't want a user to create new Boxes under Home (root) Box, remove them from Box Configuration > Security of the Home Box.

  • remove users (Viewers) from individual Boxes (Box Configuration > Security) - users have been added as Viewers to all previously public Programs.

  • If you don't want the users to automatically be added as Viewers in newly created Boxes of a "Program" type, go to App Administration > Program and remove them from the security role template of that Box type.

Global Program Admin

  • App User

  • Box Admin in Home (root) Box

Global Program Admin role doesn't exist in BigPicture 8

Migration:

  • users became Home (root) Box Admins - this gives them Admin permissions in all Boxes (including previously private Programs). Since roles are always inherited from upper-level Boxes, they are effectively Admins in all Boxes under the Home (root) Box.

    • They can edit/delete all Boxes (including previously private ones.

    • They can create new Boxes.

  • Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.

Changing/deleting access options:

  • Inherited roles are not listed in sub-Boxes - this means that if you don't want a user to have Admin access to all Boxes, you have to remove them from the Home (root) Box. You can't selectively remove their Admin access from each Box.

Program Admin

  • App User

  • Box Admin

Becomes a Box admin:

  • Users are added as Box Admins to Programs where they were a Program Admin

  • Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.

Program Editor

  • App User

  • Box Editor

Becomes a Box editor:

  • Users are added as Box Editors to Programs where they were Program Editors

  • Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.

Program User

  • App User

  • Box Viewer

Becomes a Box Viewer:

  • Users are added as Box Viewers to Programs where they were Program Users

  • Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.

Program Lead

  • A Box Lead role doesn't grant users any permissions

Becomes a Box Admin:

  • Users are added as Box Admins to Programs where they were a Program Lead.

  • They still are listed as a Box Lead, but this doesn't grant them any permissions. In the future, if you want the Box leads to have special access, you need to add them to a Box with an appropriate role (Box Configuration > Security).