Roles & Rights

Owned by Christoph Bergner
Last updated: Feb 08, 2023
4 min read

System of Roles

Explicit Roles

The system of roles in Smartfacts contains "Managers" and "Owners". Managers can carry out certain actions, while owners have the right to do certain things in a given context.

For example: A "Project Manager" (explicit role granted by an account manager) is allowed to start a new empty project. By doing so, this user becomes the first and only "Project Owner" (implicit role) and may invite other users, add content etc.

Following this principle, these explicit roles have been added:

  • Account Manager
    The account manager has the right to handle every aspect of the account. They can add new users to the account by synchronizing them from the CAMP and they can establish new Model Warehouses and add users to the Model Warehouses.

  • Project Manager, granted by an account manager for the scope of the Model Warehouse.
    A project manager can start a new project. By doing so, this user becomes a project owner. Project owners can invite other members of the Model Warehouse to the project. They may grant the roles of a project manager, model manager, review manager, link manager, schema manager and project member to any member of the Model Warehouse.

  • Model Manager, granted by a project manager for the scope of the project.
    Model Managers can publish and update models via a Smartfacts plug-in to a Smartfacts project. By doing so, model managers become model owner of a model. They can manage the meta data of a model and can also delete a model from a project and grant visibility rights to other users.

  • Review Manager, granted by a project manager for the scope of the project.
    Review managers can start a new review. By doing so, they become review owner of this review. Review owners can manage a complete review and invite participants, manage the content to be reviewed and control the process of the review. They can also grant review ownership rights to other users.

  • Link Manager, granted by a project manager for the scope of a project.
    Link managers can add and delete links and change the status of a link.

  • Schema Manager, granted by a project manager for the scope of a project.
    Schema managers can define SQL schemas to be harvested into the project.

  • Project Member, granted by a project manager for the scope of a project.
    Project members can see all content within a project for which they have been granted visibility rights.

The Team and its Roles on the Team Tab of a Project

The team tab lists all users and shows their roles in a color scheme on the right side.

Simply hover over the color scheme on the right-hand side of the user listing to review the detailed roles that the user owns in the current project. If you have the right to change roles, then the changeable roles will be highlighted blue and can be edited.
A group icon "G" indicates that a user is shown as project member because they are a member of a group which has been added to the project. Hover over the group icon to see the relevant groups in which the user is member of. This group will be displayed in bold.

Author of a Comment

Adding a comment to an artifact makes you author of the comment. Only authors of a comment can edit or delete this comment.

Overview of Explicit and Implicit Roles

Explicit Role

Implicit Role

Account Manager

  • Account Managers are assigned in the Camp

  • Account Managers can edit the Model Warehouse Profile

  • Scope: The whole Smartfacts instance

 

Project Manager

  • Project Managers are assigned by Account Managers

  • Scope: The project

Project Owner

  • Project Owners can manage all aspects of a project

  • Starting a new project makes a Project Manager Project Owner of this project

  • Project Owners can grant project ownership rights to other members of the same project

  • Scope: The project

Schema Manager

  • A schema manager is allowed to configure the SQL schema harvester

 

Model Manager

  • Model Managers are appointed by Project Managers

  • Can publish a new model

  • Scope: The Project

Model Owner

  • Model Owners manage and update all aspects of the model the own

  • Model Owners can grant ownership rights to other users of the project
    Model Managers become Model Owners of a model by publishing it

  • Scope: The model

 

Link Manager

  • Link Managers are appointed by Project Owners

  • They can add and delete links and change the validity status of a link

  • Scope: The project

Review Manager

  • Project Owners appoint Review Managers

  • Scope: The Project

Review Owner

  • Review Owners can appoint other users of the project as Review Owner

  • Having started a new review, a Review Manager becomes Review Owner of the review

  • Review Owners manage all aspects of a review

Configuration Manager

  • A configuration manager is entitled to add, edit and delete components and global configurations

 

 

Project Member

  • Project Members are added to a project by the Project Owner

Details for Account Managers

  • Account managers have access to the CAMP – "Central Account Management for MID Products". Here, they can define which users and which groups of users are members of which Model Warehouse.

  • The Model Warehouse Profile is specific to every Model Warehouse. Any options available in the Model Warehouse Profile apply to the whole Model Warehouse. The profile can only be changed by an Account Manager.

Details for Administrators

  • LDAP/AD is commonly used to manage user accounts throughout the organization. User details and groups of users are normally managed here.

  • SCIM pushes changes in user data from LDAP/AD to the Smartfacts platform. This makes sure that users from certain groups of the Enterprise LDAP/AD are available in the Smartfacts platform and authentication can be carried out.

  • Keycloak is the component to manage authentication of Smartfacts users. While SCIM synchronizes the certain groups of the organization's LDAP/AD data to the Smartfacts platform, Keycloak manages user authorization from the web platform and plug-ins.