RedmineRoles » History » Version 16
Go MAEDA, 2016-04-03 08:56
Fix: Default value for "Issues visibility" is "All non private issues".
1 | 1 | Jean-Philippe Lang | h1. Roles & permissions |
---|---|---|---|
2 | |||
3 | 12 | Dave Clements | Roles lets you define the permissions that the members have on a [[RedmineProjects|project]]. Each member of a project has one or multiples Role(s) for the project. A user can have different roles for different projects. |
4 | 1 | Jean-Philippe Lang | |
5 | You can create new roles or edit existing ones. You can delete a role only if nobody has this role on a project. |
||
6 | |||
7 | h2. Roles properties |
||
8 | |||
9 | * *Name*: display name of the role |
||
10 | 2 | Jean-Philippe Lang | * *Issues can be assigned to this role*: if unchecked, issues can not be assigned to members with this role on a project. |
11 | 15 | Etienne Massip | * *Issues visibility*: assuming that this role includes the ??View Issues?? permission, the following rules apply to the issues of the projects the user is tied to through it: |
12 | 16 | Go MAEDA | ** _All issues_ : the user can see all issues. |
13 | ** _All non private issues_: the user can see all issues which are not marked as private. This is the default. |
||
14 | 15 | Etienne Massip | ** _Issues created by or assigned to the user_: the user can only see issues created by or assigned to her/him. |
15 | 1 | Jean-Philippe Lang | |
16 | 5 | Jean-Philippe Lang | h2. Permissions |
17 | 1 | Jean-Philippe Lang | |
18 | When editing a role, you can define its permissions by checking/unchecking the different actions. |
||
19 | |||
20 | 4 | Jean-Philippe Lang | |_. Permission|_. Description| |
21 | |\2. *_Project permissions_*| |
||
22 | |Create project|Allow non-admin users to create a root project |
||
23 | 13 | Graham King | You can specify which role will be automatically given to a non-admin user who creates a project (see [[RedmineSettings#Projects]])| |
24 | 4 | Jean-Philippe Lang | |Edit project|Allow user to edit project properties| |
25 | |Select project modules|Allow user to enable/disable project modules (such as issues tracking, wiki, repository...)| |
||
26 | |Manage members|Allow user to add/remove project members or change the roles of existing members| |
||
27 | |Manage versions|Allow user to add/edit/delete project versions| |
||
28 | |Create subprojects|Allow user to add subprojects to the project| |
||
29 | |\2. *_Boards permissions_*| |
||
30 | |Manage boards|Allow user to add/edit/delete project forums| |
||
31 | |Post messages|Allow user to post new topics in forums| |
||
32 | 8 | Mischa The Evil | |Edit messages|Allow user to edit any message and to remove any message attachments| |
33 | 4 | Jean-Philippe Lang | |Edit own messages|Allow user to edit its own messages only| |
34 | |Delete messages|Allow user to delete any topic or reply| |
||
35 | |Delete own messages|Allow user to delete its own topics or replies| |
||
36 | |\2. *_Documents permissions_*| |
||
37 | |Manage documents|Allow user to add/edit/delete project documents| |
||
38 | |View documents|Allow user to view documents| |
||
39 | |\2. *_Files permissions_*| |
||
40 | |Manage files|Allow user to add/edit/delete project files under the Files section| |
||
41 | |View files|Allow user to view files| |
||
42 | |\2. *_Issue tracking_*| |
||
43 | |Manage issue categories|Allow user to add/edit/delete issue categories| |
||
44 | |View Issues|Allow user to view project issues| |
||
45 | |Add issues|Allow user to create new issues| |
||
46 | |Edit issues|Allow user to fully edit existing issues| |
||
47 | 7 | Mischa The Evil | |Manage issue relations|Allow user to add/remove relations between issues| |
48 | |Manage subtasks|Allow user to add/remove subtasks to issues| |
||
49 | 4 | Jean-Philippe Lang | |Add notes|Allow user to add comments to existing issues| |
50 | |Edit notes|Allow user to edit any issue comment| |
||
51 | |Edit own notes|Allow user to edit its own comments only| |
||
52 | |Move issues|Allow user to move existing issues to another project| |
||
53 | |Delete issues|Allow user to delete issues| |
||
54 | |Manage public queries|Allow user to add/edit/delete issue queries that are visible by all users| |
||
55 | |Save queries|Allow user to save its own issue queries| |
||
56 | |View gantt chart|Allow user to view the gantt chart| |
||
57 | |View calendar|Allow user to view the calendar| |
||
58 | |View watchers list|Allow user to see who is watching an issue| |
||
59 | 1 | Jean-Philippe Lang | |Add watchers|Allow user to add other users as watchers of an issue| |
60 | |Delete watchers|Allow user to remove watchers of an issue| |
||
61 | 5 | Jean-Philippe Lang | |\2. *_News permissions_*| |
62 | |Manage news|Allow user to add/edit/delete project news| |
||
63 | |Comment news|Allow user to add comments to news| |
||
64 | |\2. *_Repository permissions_*| |
||
65 | |Manage repository|Allow user to configure the project repository| |
||
66 | |Browse repository|Allow user to browse and view the content of the project repository| |
||
67 | 14 | Mischa The Evil | |View changesets|Allow user to view the changesets| |
68 | 5 | Jean-Philippe Lang | |Commit access|Used by Redmine.pm to give write access to the project repository |
69 | See [[Repositories_access_control_with_apache_mod_dav_svn_and_mod_perl]]| |
||
70 | |\2. *_Time tracking permissions_*| |
||
71 | |Log spent time|Allow user to log time on the project| |
||
72 | |View spent time|Allow user to view the time logs on the project| |
||
73 | |Edit time logs|Allow user to edit any time log| |
||
74 | |Edit own time logs|Allow user to edit its own time logs only| |
||
75 | |Manage project activities|Allow user add/edit/delete activities| |
||
76 | |\2. *_Wiki permissions_*| |
||
77 | |Manage wiki|Allow user to create or delete the project wiki |
||
78 | 11 | Tharuka Pathirana | Deleting a wiki is an *irreversible* operation, it deletes all pages, their history and all attached files!| |
79 | 5 | Jean-Philippe Lang | |Rename wiki pages|Allow user to rename existing wiki page or assign wiki pages to a parent page| |
80 | |Delete wiki pages|Allow user to delete wiki pages |
||
81 | Deleting a wiki page is an *irreversible* operation, the page and all its history are deleted!| |
||
82 | 1 | Jean-Philippe Lang | |View wiki|Allow user to view the wiki| |
83 | 7 | Mischa The Evil | |Export wiki pages|Allow user to export wiki pages to various formats (pdf, html, ...)| |
84 | 5 | Jean-Philippe Lang | |View wiki history|Allow user to view older versions of the wiki pages, and diff between versions| |
85 | |Edit wiki pages|Allow user to edit unprotected wiki pages| |
||
86 | |Delete attachments|Allow user to delete existing wiki page attachments| |
||
87 | |Protect wiki pages|Allow user to lock/unlock wiki pages, and edit locked pages| |
||
88 | 4 | Jean-Philippe Lang | |
89 | 1 | Jean-Philippe Lang | h2. System roles |
90 | |||
91 | 13 | Graham King | There are two system roles in Redmine: 'Non member' and 'Anonymous'. They are internally used by Redmine and thus can not be deleted. |
92 | 1 | Jean-Philippe Lang | |
93 | * *Non member*: this role lets you define the permissions that a registered user has on projects which he is not a member of. |
||
94 | * *Anonymous*: this role lets you define the permissions that anonymous users have on the projects. |
||
95 | |||
96 | 13 | Graham King | Note that these two roles only apply to public projects since anonymous users and users who are not a member of a private project can not even see it. |
97 | 6 | Jean-Philippe Lang | |
98 | 9 | Glenn Gould | As a consequence of the fact, that anonymous and non member roles can not be assigned to a specific user or group, but are assigned automatically, the permissions of these roles are global for a given Redmine installation. To be more concrete: You can create different developer-roles (reporter1,reporter2,...) with slightly different permissions to fit specific needs of specific projects. However: you cannot adapt anonymous and non member roles in a way, that non-members are allowed to create board-messages in one project, but are forbidden to do so in another project. |
99 | |||
100 | 10 | Glenn Gould | Some permissions can not be given to these roles. For example, the 'Manage members' permission can not be given to non member or anonymous users. |