Introduction
“Roles” refers to a set of permissions which when assigned to a user allows him a defined and controlled access to the application. The purpose of the User Management Role is to have granular level control on what the user can do within the application. It helps in administering the application thereby maintaining security. There are a few roles that come with the application - admin, cashier, and manager. However, additional roles can also be created to suit business requirements.
Steps To Create A New Security Role
The steps to create a new security role are explained below:
Go to Home > Setup > User Management > Roles to see the list view of all the roles defined in the application
Click on “Add Security Role” to open the “Create Role” card. On this screen you can:
- Specify a Role Name.
- Pick the permission or set of permissions that you want to assign to the role.
Once you have specified the Role and assigned permissions, you need to click the “Save” button.
Import a User Role
User Management Roles cannot be imported. However, you can export them using the Export button. (See: Exporting the User Role)
Export a User Role
The steps to export a new security role are explained below:
Step 1. Click the Export button on the Security Role List View screen.
Step 2. Browse to a location where you want to save the SecurityRole.xls file.
Step 3. Click on the Save button to save the SecurityRole.xls file.
The SecurityRole.xls file is a spreadsheet file and can be opened using Microsoft Excel or Google Sheets or any compatible spreadsheet processor.
Edit a Role
The steps to edit a new security role are explained below:
Step 1. Open the Security Role List View Screen
Step 2. Click the Edit symbol against the Role that you want to edit. Clicking on the edit symbol brings up the “Update Role” page, wherein you can update the Role created, its permission and access rights.
Step 3. Click on the Save button to save the changes made and exit the screen.
Delete a Role
The steps to delete a new security role are explained below:
Step 1. Open the Security Role List View Screen
Step 2. Click the Delete symbol against the Role that you want to delete. Clicking on the delete symbol brings up the Delete Role Notification Popup screen
Step 3. Click Yes on the Delete Role Notification confirmation dialog box to delete the role selected OR the “Cancel” button to retain the role.
Permission Types and Access Levels
The administrator has the power to, not only assign a Role to a user or a user group, but also to impose restrictions by controlling the access levels. In the image below, Admin, Cashier, Manager are all roles.
For the purpose of illustration, we are picking the “Customer” page. For example, the management decides to employ a new trainee and assigns him the role of a cashier at XYZ store. Now with the new trainee being new to the system, the management does not want to grant him full access to the system. Let us see how we can allow or restrict the access levels and manage permissions in the given scenarios.
Scenario 1:
The admin wants to completely restrict the cashier from accessing the customer screen, he would simply keep the “Allow Access” check box unchecked.
Scenario 2:
The admin wants the cashier to have access to the customer screen, however, wants him to be able to only view the customer information and not make any edits to it, he can keep the “Allow Access” check box checked and along with that select the “View Only” radio button.
Scenario 3:
The admin wants the cashier to have access to the customer screen, however, wants him to be able to only add/update the customer information and not view his information, he can keep the “Allow Access” check box checked and along with that select the “Add/Update” radio button.
Cashier restrictions on the POS
Depending on your business policies and the nature of the products you sell, you may want to include some restrictions at the POS for the cashier. For example, you may not want the cashier to have access to the Dashboards and also not allow the cashier to offer any discounts on the POS
This can be achieved by not selecting the Allow Access option for Dashboards. Similarly, by not selecting the option Change Discount/Price on Register, the cashier will not be able to extend any discount or change the price of the product on the POS.
Suggested Readings