Versions Compared

Old Version 6

changes.mady.by.user PIPEFORCE

Saved on

compared with

New Version 7

changes.mady.by.user PIPEFORCE

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

These composite roles exist by default in PIPEFORCE and cannot be removed (“factory defaults”). Any user or group, which is assigned to such a role, has some additional basic set of permissions assigned to fulfill a certain role in PIPEFORCE.

Role Name

Description

ROLE_GUEST

Any guest user of PIPEFORCE is assigned to this role. Guest users do not require a license, but can only use a subset of functionalities.

ROLE_USER

Any PIPEFORCE user is assigned to this role. It allows to login to the system.

ROLE_EMPLOYEE

Any employee of our customers which should see a subset of apps in the portal need to be assigned this role.

ROLE_DEVELOPER

Any user who wants to be able to develop custom apps need to be assigned to this role.

ROLE_SUPPORT

Special role for our support team.

ROLE_ADMIN

Any user assigned to this role has the permission to manage users and settings, but cannot create apps.

ROLE_SYSTEM

A system user is assigned this role.

Why are there default composite roles and default groups?

...

Code Block
CAN_CMD_<command_name>

Some examples:

Command Name

Permission / Role Name

drive.read

CAN_CMD_drive.read

drive.save

CAN_CMD_drive.save

property.put

CAN_CMD_property.put

See Role Mappings section for users and groups in IAM for a full list of all available command permissions.

...

There are some default groups in PIPEFORCE. These groups may not be renamed or deleted by admins or developers, otherwise the system will no longer work as expected. These default groups are:

Group name

Description

Requires license

Administrator (Standard)
pipeforce-admin (since v7.0)

Members of this group can create and manage users & groups, but cannot create and develop apps.

Yes

Developer (Standard)
pipeforce-developer(since v7.0)

Members of this group can create and manage users & groups. They cam also create and develop apps.

Yes

Employee (Standard)
pipeforce-employee(since v7.0)

Members of this group can login to the system and use it, but they cannot create or manage users, and they cannot create or develop apps.

Yes

Guest (Standard)
pipeforce-guest(since v7.0)

Member this group can login to the system, but they can see only a very limited set of functionalities. These members are typically managed by the system.

No

Recipient (Standard)
pipeforce-recipient(since v7.0)

Members of this group cannot login to the portal, but can use a limited set of features in the system. These members are typically managed by the system.

No

service-workflow-admin

Members of this group can see and execute tasks from the workflow tasks' list, and they can get additional information about workflows.

Yes

service-workflow-user

Members of this group can see and execute tasks from the workflow tasks' list.

Yes

For any app or process, there can be additional groups, depending on the license you are using.

...