Overview
Privileges allow a netFORUM User to select, update, insert or delete records in netFORUM. Privileges work both on the database Table and Column level. Based on a user's privileges, fields will become enabled or disabled, or visible or invisible, and the Save and Delete buttons on forms will be enabled or disabled. A user's privileges are granted based on belonging to Groups; in turn, a Group has its own privileges defined, and those group privileges get propagated down to the users within those groups.
A user's privileges are defined based on the overall combination of the user's group's (as set up from the User page on the Groups child form) and the combination settings in the Group Table Privilege and Group Column Privilege table. Generally, the more Groups a User belongs to, the more expansive their privileges will be, except if the user belongs to any Groups that have deny privileges on a Table/Column, as deny overrides any grants.
A netFORUM user with admin privileges may, in the iWeb Admin module, adjust the underlying Group Table Privilege and Group Column Privilege to define the exact security settings needed.
Uses
xWeb
xWeb Users are limited based on their privileges. See Installing xWeb and XWeb User Administration for more on setting up xWeb users and privileges.
Deploy Tool
Privileges are also populated by the Deploy Tool.
Processes
Setting Group Privileges
The process to set the security settings for a User Group.
Populate Group Privileges
This process is used to initialize default Group Column Privileges.
Populate User Privileges
This process is used to propagate Group Column Privileges down to the Users in the Groups. This process should be run anytime new users or groups are added, or Group Column Privileges are adjusted, or a user's has been moved in or out of different groups.