2021.05.18 update-data permission upgrade
I. Background description
1. Data permission upgrade plan and pace
Version April 30: release gray scale. Gray scale enterprises can experience the new permission management function, and the new permission function only takes effect for newly created YIDA applications;
Version May 18: it is officially launched and supports the new permission function for new applications in non-template mode;
Version June 22: for historical 3.0 applications, the application administrator is gradually supported to manually upgrade to the new permission function. The preset permission is initialized and the old permission configuration mapping is not provided;
2. Permission configuration-permission Group
For forms and flow chart, control the process, submit permissions, and data management permissions of forms through permission groups 」.
Three elements of submit permission Group:Permission members, all operations, and field permissions
View four elements of a permission Group:Permission members and data ranges(That is, select all data rows),Operation permission and field permission(Select all data columns)
If the same member belongs to multiple permission groups, the permission takes the union of multiple select-all groups.
3. Scope of permission
Permission rules for form/process configuration can take effect on the data management page, associated form, and report, namely:
- On the data management page, the data range that organization members view is the range filtered according to the permission configuration rules of the form/process;
- Form design form B can be associated with form A data, the data range of form A that organization members can associate when accessing form B is, the range filtered according to the permission configuration rules of form A/process;
- The report is configured with the data source C form. When the organization members access the report, the data range they view is the range filtered according to the permission configuration rules of the C form/process;
2. Form permission configuration
(1) Submit permission management
Preset permission Group
The platform provides preset permission groups that can be submitted to all members of the organization;
Edit permission Group
You can edit the permission group to modify the name, description, permission members, all operations, and field permissions;
You can customize permission group members through departments, roles, and designated personnel;
YIDA the platform administrator and the application master administrator have the submit permission by default;
You can customize field permissions and set visible, editable, and hidden fields;
Copy and add permission groups
You can add a permission group by copying or adding permission groups. The editing configuration of the permission Group is the same as above;
Delete a permission Group
You can delete a permission group when the number of permission groups is greater than one;
(2) view permission management
Preset permission Group
The platform preset two permission groups for viewing permissions: all members can view their own data, and administrators (platform administrators and application master administrators) can manage all data;
Edit permission Group
Permission members: you can select all members and custom members (by department, role, specified person, and members on the page)
Data range: you can select all data, submit by yourself, submit by the department, submit by the subordinate department, submit without login, and set data filtering conditions according to the form content.
Operation permission: view, edit, delete, change record, comment, and print
Field permissions: all fields can be viewed, all fields can be edited, and fields can be visible, edited, hidden, and encrypted;
Permission members:
Custom members-the personnel on the page. You can select the personnel component on the form page. Members in the form data are supported as permission group members;
Data range:
Set data filtering conditions based on the form content. You can set data filtering conditions based on form fields. In the form, member components and department components support variables;
Member component: current logon person
Department component: the Department of the current logon person.
Field permissions:
Custom field permissions, custom field visible, edit, hide, encryption range, where the encrypted field will display *, such as mobile phone number, ID number and other sensitive information, can be set to encrypted display;
Copy and add permission groups
You can add a permission group by copying or adding permission groups. The editing configuration of the permission Group is the same as above;
Delete a permission Group
You can delete a permission group when the number of permission groups is greater than one;
III. Process permission configuration
Differences between process permission configuration and form permission configuration: field permission for process permission configuration is configured on the page of process design;
Other functions are the same as form permission configuration.
IV. Data Management page
On the data management page, the data range that organization members view is the range filtered according to the permission configuration rules of the form/process;
- The number of data bars that can be viewed.Data rangeControl;
- The available query conditions and field ranges in the data management list, which are configured by the permissions in the form/process.Field permissionsControl;
- The action item in the action column, which is configured by the permissions in the form/process.Operation permissionControl;
V. Associated form
Form design form B can be associated with form A data, the data range of form A that organization members can associate when accessing form B is, the range filtered according to the permission configuration rules of form A/process;
VI. Report
The report is configured with the data source C form. When the organization members access the report, the data range they view is the range filtered according to the permission configuration rules of the C form/process;
VII. You can view the permission configuration on the page.
Forms and processesView permissions on the pageFor more information, see Chapter 2 and 3;
Data management pages and reportsPage visible permissions, configure in the settings of the page;
Appendix. Features not supported in this issue
- Custom process column permissions
- Column permissions for process data "Page view fields" merge "field permissions for each node 」
- Data scope permissions of process participants (approval, CC, transfer, and signing)
- DingTalk role search
- The version is not supported for process permissions;
- View all data & manage all data, the column range of, take the page view range;
- Permission groups support service callback
- The data management page of the document page, excluding batch deletion, batch modification, and batch printing.
- Copy application, copy process/document page (including template creation application), and do not copy the original permission group.
- Data Management page, for the operation of multiple permission groups and the merging rules of field permissions respectively
- "Set data filtering conditions based on form fields", the logical relationship of "or" between each field
- The field permissions of the report are filtered according to the permission rules.
-------------------- Get the latest information YIDA, welcome to follow US--------------------
