How to Set Up Custom Permissions in EGroupware?

danieljose 2025-01-23 11:16:55 UTC #1

Hi everyone,

I am relatively new to EGroupware and trying to set up custom permissions for different user roles in our organization. Specifically…, I would like to:

Restrict access to specific modules based on user roles.
Allow certain users to have “read-only” access while others have full permissions.
Ensure these permissions are automatically applied when assigning users to their roles.

I have already explored the Admin panel and User Groups sections but I am unsure how to apply granular permissions effectively. Are there any best practices or step-by-step guides available: ??

Also, if anyone has suggestions for testing permissions before rolling them out across the team, that would be a bonus !! I would like to avoid any disruptions during our transition.

Thanks in advance for your guidance!!

Looking forward to learning from this community’s expertise.

With Regards,
Daniel Mendix

StefanU 2025-01-23 13:11:07 UTC #2

Hi Daniel.

There are execution rights for applications.
You should therefore create user groups for roles and set the execution rights for the groups.
A group for all users with basic rights is usually also useful.
Execution rights can also be granted to users. However, this should of course be avoided.

Important: Do not restrict rights but give rights. Minimum principle!

Authorisations for data are usually also managed via groups. Users can also share their data.
There are even more specialised places (resource management). There, the rights depend on categories.

What apps do you want to use?
It’s best to start with one app and think about who should have access to it and how the data should be managed.
Do you want to start with addresses? That might be a good place to start.

There is no ‘best practice’ for this topic. The constellations in the organisations are far too different for that.
In our consulting business, this topic usually takes up a lot of space.

Stefan