By default, permissions are inherited from the tier above and can be overridden if permittedPermissions are applied separately to each role:



The number of users for each role is displayed next to the role name.


Permissions are broken down into several sections:


General


Here you can set the theme for a role and decide if users with that role are allowed to change it:



Launchpads/Flightdecks


Launchpads and Flightdecks permission options are as follows:



Launchpads

  • User can use launchpads
    • This allows users to use and create launchpads
  • Users can share their launchpads with groups
    • This allows users to share launchpads with the group providers that are part of the establishment
  • Users can share their launchpads with users
    • This allows users to share launchpads with individual users
  • Users can share their launchpads with anyone
    • This allows users to share launchpads publicly
  • Users can share their tiles with anyone
    • This allows users to publish the tiles they've created to Airbase

Flightdecks

  • User can use flightdecks
    • This allows users to use and create flightdecks
  • Users can share their flightdecks with groups
    • This allows users to share flightdecks with the group providers that are part of the establishment
  • Users can share their flightdecks with users
    • This allows users to share flightdecks with individual users
  • Users can share their flightdecks with anyone
    • This allows users to share flightdecks publicly


Users and groups


This permission dictates at which level each role can share:



Options are:


  • None
  • Establishment
  • Cluster
  • Authority
  • Tenant
If, for example, a role was allowed to share at Authority level, a user with that role would be able to choose from all of the groups/individuals across the Authority when sharing a resource. If the role was set to Establishment sharing scope, then they would only be able to share with groups and users within the establishment. Sharing scope does not affect sharing resources publicly. This is determined by the launchpads and flightdeck permissions.

Inheritance

This setting determines whether or not permissions can be overridden and changed by the administrator at the tier(s) below:

If the box is checked then the admin at the tier below is free to override any and all permissions and set them as they please. If it is unchecked, the administrator below will not be able to override and change any permissions.