...
Inheritance of Roles
In BigPicture 8, roles are always inherited from upper-level Boxes. Therefore, security roles granted in the Home (root) Box apply to all sub-Boxes in the hierarchy (all sub-Boxes and their children nested under the Home Box). For example, if someone is a Box Admin of the Home (root) Box, they automatically have the same permissions in all sub-Boxes through the hierarchy.
...
When you create sub-Boxes, the following roles are inherited:
...
Box Types - this page contains information on configuring the default Security settings that work as a template when you create new Boxes and the Inheritance mode.
Global Roles - this page explains App Administration settings and how access to the App is granted to, for example, Jira users.
Box configuration - this page explains what roles are available within the App and how to change them for an individual Box.
Technical Configuration of the App - this page gives you information on how to activate/deactivate the use of roles within the App.
Security (Overview module) - this page explains the impact of setting up security Roles for the Home (root) Box and lists available roles.
BigPicture 7 | BigPicture 8 | Comment |
---|
App Admin (Global Role) | | With this security role, you have administrative access to every Box, Gadget, and to the Business Administration. As an App Admin, you can see all the created Boxes and access configuration areas. |
Global User | | A role still exists in BigPicture 8, but the access has changed: Migration: Users are added as Viewers to all public Boxes. Users are added as Viewers to the security role template for a "Program" Box type - this means that every time a new Box is created using the "Program" type, a user is granted Viewer access to the new Box. Global Role - users are added as Users of the App (Administration > Security).
Changing/deleting access options: You can remove the user from the Security section in Box Configuration in each Box. Remove the user from the "Program" Box type by modifying the template in Security Section. Then, a user will not be added to every newly created Box.
|
Global Editor | | Global Editor role doesn't exist in BigPicture 8 Migration: Users are added as Box Editors to the Home (root) Box - this makes them Editors of all Boxes (including previously private Programs).
Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.
Changing/deleting access options: Inherited roles are not listed in sub-Boxes - this means that if you don't want a user to have Editor access to all Boxes, you have to remove them from the Home (root) Box. You can't selectively remove their Editor access from each Box - they must be removed from Box Configuration of the Home (root) Box and granted new access to Boxes.
|
Global Program Creator | App User Box Viewer in all public Programs Box Viewer in Security template of a "Program" Box type sub-Box Creator in Home (root) Box
| Global Program Creator role doesn't exist in BigPicture 8 Migration: Users are added as Box Viewers in previously public Programs. Users are added as sub-Box creators to the Home (root) Box - as a result, they can add new Boxes under Home (root). The sub-Boxes do not inherit this role. Users are added to the Security Role template of the "Program" Box type. Global Role - users are added as App Users (Administration > Security) - this grants them access to the App itself.
Changing/deleting access options: Sub-Box Creator role is not inherited. This role itself doesn't grant user Box access of any kind - it just lets them create sub-Boxes. If you don't want a user to create new Boxes under Home (root) Box, remove them from Box Configuration > Security of the Home Box. remove users (Viewers) from individual Boxes (Box Configuration > Security) - users have been added as Viewers to all previously public Programs. If you don't want the users to automatically be added as Viewers in newly created Boxes of a "Program" type, go to App Administration > Program and remove them from the security role template of that Box type.
|
Global Program Admin | | Global Program Admin role doesn't exist in BigPicture 8 Migration: users became Home (root) Box Admins - this gives them Admin permissions in all Boxes (including previously private Programs). Since roles are always inherited from upper-level Boxes, they are effectively Admins in all Boxes under the Home (root) Box. Global Role - users are added as Users of the App (Administration > Security) - this grants them access to the App itself.
Changing/deleting access options: |
Program Admin | | Becomes a Box admin: |
Program Editor | | Becomes a Box editor: |
Program User | | Becomes a Box Viewer: |
Program Lead | | Becomes a Box Admin: Users are added as Box Admins to Programs where they were a Program Lead. They still are listed as a Box Lead, but this doesn't grant them any permissions. In the future, if you want the Box leads to have special access, you need to add them to a Box with an appropriate role (Box Configuration > Security).
|