Can We Control the Functions Available Through Admin Accounts?
- Article Type: General
- Product: MetaLib
- Product Version: 4
Description:
Can we control the functions available through admin accounts?
Is there a consortial supra admin account?
Resolution:
In ./dat01/tab/tab_management, individual staff users are assigned to institutions.
Staff users who have rights to their institution can do almost anything to that institution.
The only two identities for them at this moment are S (everything for that institution is open to them) and Y (everything except the link to Institutional Settings).
In MetaLib 4.3, there will be a wider variety of roles in the /M. For example, there will be a user who can only get to statistics. Everything else in the /M will be grayed out.
In ./dat01/tab/tab_groups -- you define the relationship of institutions to each other. Institutions can:
-- control only their own resources
ARTS ARTS,
-- control other institution's resources as well as their own
SCIENCE ARTS, SCIENCE, PENGUINS,
-- control other institution's resources and not their own
SCIENCE ARTS, PENGUINS,
-- control nothing
(not in the table)
So, there's a master-servant relationship in the table. The left column is the master and the right column shows what that instiuttion can control.
However, users belong to institutions and institutions belong to each other. You cannot say "George is the master of all he surveys! He can enter other institutions and mess about with their resources and no other individual can do that."
All you can say is: "George belongs to XYZ and XYZ can control A, B, C, and D institutions."
Everyone else with a XYZ login will also be able to control A, B, C, and D.
Some consorita have an "extra" institution that does not actually serve users but is just the consortial manager.
- Article last edited: 10/8/2013