Roles
Roles provide Users and API Keys with a set of permissions. Users and API Keys may only be assigned to one role at a time.
Settings
| Field |
Description |
Editable For Built-In |
| Name |
The unique name of the Role. |
No |
| Built-In Role |
Whether the Role is built into GS. Built-In Roles cannot have their name, permissions, or user interface settings changed. |
No |
| Allow Offline Data Entry |
Whether this Role allows its Users to run Inspections while offline. |
Yes |
| Hide In Lists |
Whether to show this Role in the list page. |
Yes |
| Permissions |
The set of permissions assigned to this Role. |
No |
| User Interface |
Which parts of the User Interface this Role can access. |
No |
| Users |
The Users who belong to this Role. |
Yes |
Built-In Roles
GS comes with six built-in Roles.
| Role |
Description |
| Admin |
Access to everything in the system. At least one Admin is required, and attempts to remove the last Admin will fail. |
| Engineer |
Everything Admin has access to except managing Global Settings, Locations, and Access. |
| Analyst |
Can analyze and edit existing data. |
| Supervisor |
Can enter data, edit data, and edit existing Traceability. |
| Data Entry |
Can only enter data. |
| Helpdesk |
Can only reset passwords for users. |
Custom Roles
Permissions can be customized by creating custom Roles. It is recommended that custom Roles are created based on an existing Role. It is possible to create a custom Role which causes errors when used. For example, a Role which has the List and Run Published Revision permission for Inspections but does not have View permission for Characteristics will result in an error when attempting to run an Inspection with an SPC Test.
Custom roles cannot be deleted if they are assigned to any Users or API Keys.
Permissions
The View, Create, Update, and Delete permissions have been omitted from the tables below for brevity.
Access
|
Reset Password |
| API Keys |
Resetting an API Key requires the Update permission |
| Groups |
|
| Roles |
|
| Users |
Allows resetting a User's password. Users may not reset their own password. |
Admin
Analysis
|
Share |
Schedule |
Manage |
| Dashboards |
Allows publicly sharing a Dashboard. |
|
|
| Export Data |
|
|
Allows creating and downloading exported data. |
| Reports |
|
Allows scheduling a report to be automatically sent. |
|
Data Entry
|
List and Run Any Revision |
List and Run Published Revision |
Check Inspection Schedules |
| Inspections |
Allows viewing and running any revision of any Inspection, regardless of assignments or published state. |
Allows viewing and running Inspections which are assigned and have a published revision. |
Allows checking for Inspections that are scheduled to run. Only Inspections that are assigned to the user and have a published revision will be checked. |
Data Records
|
Retrieve and Analyze |
View Individual Data Records |
Developer Mode |
| Data Records |
Allows fetching data and performing analysis on it. This permission must be enabled for users to draw charts during Inspections. |
Allows retrieving a single data record. |
Allows enabling Developer Mode. |
Licenses
|
View Current Usage |
View Historical Usage |
Revoke |
| Licenses |
Allows viewing licenses that are currently in use. |
Allows viewing when licenses were consumed or released. |
Allows revoking a currently in-use license. |
Locations
|
Access to all Locations |
| Locations |
Allows the user to access all Locations without needing to select them on the User. |
Quick Data Entry
|
Run |
| Quick Data Entry |
Deprecated Allows running Quick Data Entry. Has been deprecated in favor of the User Interface permission. |
Scripting
|
Run Published Revision |
| Library Scripts |
Allows running the published revision of a Library Script. Without this permission, users with the Inspection permission List and Run Published Revision will not be able to run Inspections that utilize Library Scripts. |
See Also