Manage permissions

Manage permissions

Permissions control what users can do in Cin7 Core.

For example, Richard could have permission to create purchase orders while Leisa only has permission to view purchase orders and Cecile has neither.

Each user inherits their permissions from their role (or, they’re given special permissions). For each area of Cin7 Core, users have one of three levels of permissions:

  • Full access: The user can view and edit the area.

  • Read-only access: The user can view but not edit the area.

  • No access: The user can’t view or edit the area.

To manage your users’ permissions, create and assign roles to users. Otherwise, you can also apply special permissions to users, which override the permissions of their roles. The permissions that are actually in effect are known as the effective permissions.

Prerequisites

View effective permissions

Effective permissions are the permissions that actually control a user’s access.

For example, Richard may inherit full-access to purchase orders from Role A, read-only access from Role B, and no access from a special permission. The effective permission is whichever permission actually controls the user’s access to purchase orders.

When a user inherits different permissions from multiple roles or special permissions, their effective permissions are determined by this order of precedence:

  1. The special permission overrides all other permissions (unless the special permission is N/A), else

  2. Full access is applied if granted by any role, else

  3. Read-only access is applied if granted by any role, else

  4. No access is applied.

To view a user’s effective permissions:

  1. From the Settings menu in the navigation, open Users and roles.

  2. Open the Users tab.

  3. Select the user and view their Effective Permissions.

Assign special permissions

Special permissions are permissions applied directly to a user. Special permissions override the permissions that users inherit from their roles and give permissions to users without roles.

For example, say Role A is assigned to Richard and Leisa and gives them full access to MES. If Richard has a read-only special permission for MES, his effective permission for MES will be read-only while Leisa’s is full access.

To assign special permissions:

  1. From the Settings menu in the navigation, open Users and roles.

  2. Open the Users tab.

  3. Select the user.

  4. For each area to apply a special permission to, set Special Permission to either No access, Read-only, or Full access.

  5. Click Save.

Was this article helpful?

Have more questions? Submit a request