Roles

Roles


Authorization can be set up per user, but it is better to do it through roles as much as possible. A role can be associated with multiple users. This makes it possible to easily modify the rights of groups of users in one place.

Creating a role

Creating a role is easy:
  1. Navigate to the Settings > Authorization > Roles page;
  2. Add a new role by clicking the "Add Role" button;
  3. Give the role a recognizable name and click save.

It is possible to define in a role both permissions related to viewing dashboards, permissions in Qlik Sense and permissions to functions in SalureConnect. The three components are described separately below but of course this can be set up all at once.

Authorizing SalureConnect dashboards

  1. Open the role you just created;
  2. Open the "SalureConnect" tab;
  3. Click in the dropdown menu. Here all dashboards created in SalureConnect are visible. See the "Creating a Dashboard" page for how this works;
  4. Click all dashboards that this role should have access to;
  5. Check "Edit Sheets" if users should actually be able to edit the dashboard. Generally, only administrators will receive this right;
  6. Some roles may not require following the user's own organizational chart, but a role may receive more permissions in a dashboard. As an example an HRM advisor who according to their own organization chart may only see the HRM department itself but in an absence dashboard should be able to see the entire organization. Suppose a role HRM is created and the absence dashboard is linked to it, then the entire organizational chart can be checked for this dashboard. A user who then receives this role will be allowed to see everything for that dashboard;
  7. Save the role.


Qlik Sense

Some users within SalureConnect are also allowed to use and possibly edit Qlik Sense dashboards. Because far from every user can do this (often only administrators actually build dashboards and data models), a separate tab for Qlik Sense permissions has been included.
  1. Open the role and click on the "Qlik Sense" tab;
  2. Click in the dropdown; this makes all Qlik Sense dashboards become visible;
  3. Select the desired dashboard;
  4. Check "Edit Sheets" and/or "Edit Data Model" if necessary. 
  5. It may be that for certain roles not the user's own organizational chart must be followed but a role is given more permissions in a dashboard. As an example, an HRM advisor who, according to his own organization chart, may only see the HRM department itself but in an absence dashboard should be able to see the entire organization. Suppose a role HRM is created and the absence dashboard is linked to it, then the entire organizational chart can be checked for this dashboard. A user who then receives this role may see everything for the relevant dashboard.

Assigning page rights
You can assign page rights in the following way.
  1. Open the role you just created and click on the "Page Rights" tab;
  2. Check the pages to which the role should have access. For now, assigning page rights is quite simple. A role with access to a page can directly everything on this page. In the future, the CRUD (Create, Read, Update, Delete) rights principle will be added to this;
  3. Save the role.


Linking a role to a user

Linking the role to a user actually makes the role active. This can be done in two ways.

(1) Through the "Associated Users" tab in the role you just created. This is normally the faster of the two methods.
  1. Go to the "Associated Users" tab in the role you just created;
  2. Click on 'Link user';
  3. Select one or more users and choose "Save".

(2) Through the user's own settings.
  1. Navigate to Settings > Authorization > Users. Open a user of your choice;
  2. Go to the "Authorization" tab and select the desired role in the "Roles" field;
  3. Note that now new dashboards and/or page permissions are added to the user's permissions. These come from the selected role. These permissions can no longer be modified at the user level. For example, if a user is entitled to the "Connectors" page according to his or her role, this cannot be modified at the user level unless the role is deactivated at the user or the role itself is modified.



    • Related Articles

    • Roles

      Authorization can be set up per user, but it is better to do it through roles as much as possible. A role can be associated with multiple users. This makes it possible to easily modify the rights of groups of users in one place. Create role Creating ...

    • Users

      This article describes how to add users and how to assign them appropriate permissions. Add user Navigate to Settings > Authorization > Users; Click on "Add User" in the upper right corner of the table; In the screen that follows, enter a name and ...

    • User management

      This article describes how to add users and how to assign them appropriate permissions. Add a user Navigate to Settings > Authorization > Users; Click on "Create" at the top right of the table; In the screen that follows, enter a name and email ...