Access Control¶
"Access control" is intended to delimit User access to different Dashboard sections through User Roles assignment.
Corefy implements multi-user access, which allows one user to use several independent organization accounts and switch between them.
It is divided into 2 parts:
- Members management
- Role Access management
Members management¶
Here you can manage your organisation team:
-
Invite new member
Info
You can invite both registered and unregistered users to become a new member of your organisation.
User will recieve an invitation to email with
Joinbutton. Join confirmation after sign in is required. After join accepting it will be automatically swiched to joined organisation!
-
Modify member
-
Assign Role to member
Info
Inviting of new member requires the role choosing. You can change invited member's role at the Member Overview page.
It is impossible to set
Ownerrole to members. Organisation's owner need to migrate it himself. -
Set up and Change Individual access scope (Permission set) for each member
Info
If want to set different permissions for several members with the same role - You can set
Individuall access scopefor each of them.You can create
New rolebased on individuial access scope!
-
- Perform actions
_For **`invited`** members_
- Revoke invite
- Resend invite
_For **`active`** members_
- Deactivate
- Activate
- Archive
User access to the organisation is primarily determined by the status of a team member related to this user.
| ID | Name |
|---|---|
invited | The invited member has no access to the organisation until he independently activates it through the mechanism of confirmation. When you try to enter the organisation, you will be redirected to the confirmation screen. A member can be deleted only in invited state using "Revoke invite" action. |
active | Active user, team member |
inactive | Inactive team member, does not have access to the organisation. When try to access,you will be shown an error screen with message - "No access rights. Contact your organisation administrator." |
archived | Archived inactive team member. Not displayed in the management list of the team and its directory. |
Warning
Inactive team member, does not have access to the organisation.
When try to access, you will be shown an error screen with message - "No access rights. Contact your organisation administrator."
Role Access management¶
In this section You can manage Access roles in current organisation!
Warning
Take stock, that You can NOT Modify or Delete System Roles!
System roles¶
| ID | Name | Description |
|---|---|---|
owner | Owner of organisation | Only 1 member of the team can have this role! The user with this role cannot be removed from the command. This role can be transferred to other team members by lowering the rights to the admin role. |
administrator | Organisation administrator | Full access to the organisation, including the ability to manage access and team members (cannot delete a user with role owner). |
manager | Organisation manager | Full read and write access, without the ability to manage organisation and technical aspects: set up integrations, webhook, see keys, regenerate them, etc. |
developer | Organisation developer | Full read and write access, without the ability to manage organisation and business aspects: re-wire payments, edit customers, organization data, etc. |
viewer | Watcher of organisation | Only read access of all data, except "sensitive data", such as: keys, webhook URL, integration, etc. |
Here you can manage your organisation roles and their access scope:
- Create New Role
- Edit name and description of exsising roles
- Set up permission set (access scope) (Custom roles only)
-
Delete out-of-use access roles (Custom roles only)
Warning
You can Delete only if It has NO members assigned to!
