...
These composite roles exist by default in PIPEFORCE and cannot be removed (“factory defaults”). Any user or group, which is assigned to such a role, has some additional basic set of permissions assigned to fulfill a certain role in PIPEFORCE.
Role Name | Description |
| Any guest user of PIPEFORCE is assigned to this role. Guest users do not require a license, but can only use a subset of functionalities. |
| Any PIPEFORCE user is assigned to this role. It allows to login to the system. |
| Any employee of our customers which should see a subset of apps in the portal need to be assigned this role. |
| Any user who wants to be able to develop custom apps need to be assigned to this role. |
| Special role for our support team. |
| Any user assigned to this role has the permission to manage users and settings, but cannot create apps. |
| A system user is assigned this role. |
Why are there default composite roles and default groups?
...
Code Block |
---|
CAN_CMD_<command_name> |
Some examples:
Command Name | Permission / Role Name |
|
|
|
|
|
|
See Role Mappings
section for users and groups in IAM for a full list of all available command permissions.
...
There are some default groups in PIPEFORCE. These groups may not be renamed or deleted by admins or developers, otherwise the system will no longer work as expected. These default groups are:
Group name | Description | Requires license |
| Members of this group can create and manage users & groups, but cannot create and develop apps. | Yes |
| Members of this group can create and manage users & groups. They cam also create and develop apps. | Yes |
| Members of this group can login to the system and use it, but they cannot create or manage users, and they cannot create or develop apps. | Yes |
| Member this group can login to the system, but they can see only a very limited set of functionalities. These members are typically managed by the system. | No |
| Members of this group cannot login to the portal, but can use a limited set of features in the system. These members are typically managed by the system. | No |
| Members of this group can see and execute tasks from the workflow tasks' list, and they can get additional information about workflows. | Yes |
| Members of this group can see and execute tasks from the workflow tasks' list. | Yes |
For any app or process, there can be additional groups, depending on the license you are using.
...