...
Action | Entity | ||
---|---|---|---|
All actions | Sysadmin user | ||
See all rules | Readonly sysadmin | ||
Perform add / edit / delete actions on rules in general | If there is a grouper.properties
If the user using the UI is in the etc:rulesEditors group. This does not apply to sysadmin or readonly sysadmin. If this is not configured then there is no global rules group. Whether this configuration is set or not, the following object privileges apply. | ||
Use email in the result clause | If there is a grouper.properties
If the user using the UI is in the etc:rulesEmailResultAllowed group. This does not apply to sysadmin or readonly sysadmin. If this is not configured then there is no global rules group. Whether this configuration is set or not, the following object privileges apply. | ||
Edit rules on a group | Group ADMIN privilege on the assignment owner | ||
View rules on a group | Group READ privilege on the assignment ownergroup | ||
Edit rules on a folder | Folder ADMIN privilege on the assignment owner | ||
View rules on a folder | Folder CREATE privilege on the assignment ownerthe folder If editing a rule, and a folder is used in the rule that the user cannot view, then the input will be blank | ||
Use a group in a "fires when", condition, or result in edit mode | READ on the group being used | ||
See a group in a "fires when", condition, or resultthe list of rules | VIEW on the group being used If editing a rule, and a group is used in the rule that the user cannot view, then the input will be blank. |
Screen - folder rules - custom pattern
...