Users: Access Rules
Access rules are the permissions to access various features of the application. In PaxFlow application, permissions are implemented on route or API level. Each feature set comprises of multiple routes or APIs. A user can be allowed or denied permissions to access any feature of the application. For example, PaxFlow docs feature consists of sub functionalities like Read a page, Add a page, Delete a page etc. All these sub functionalities are implemented as different routes in the application and hence can be given separate permissions for different user groups.
The following figure shows the features of the application and the sub functionalities of PaxFlow Docs.
Permissions are given to the users on the routes on the basis of the following four parameters:
1. Public: This field defines if the feature is allowed or denied to any public user (Not Logged in) of the application.
2. Logged In: This field defines if the feature is allowed or denied to the logged in users of the application.
3. Default Access: This field defines if the feature is allowed or denied in the default access permissions set. This is the initial set of permissions that the PaxFlow is set up with.
4. Group rules: This field lists the groups for which a given feature is allowed.
Points to Note:
- Access Rules can be modified at any time.
- For a user belonging to a group, default access rules are overridden by the group access rules.
- When a user belongs to more than one groups,
- If a particular route is denied for any one of the groups, it will be denied to the user.
- the super set of access permissions for all the groups that the user belongs to is applicable for the user.
Go to the Access Rules tab to see the list of features and their status for different user groups.
Expand each feature set to see the permission set of the feature.
Click the Change Default Access button to view and modify the default access list.