Project

General

Profile

RedmineRoles » History » Version 9

Glenn Gould, 2010-09-17 13:40
anonymous/non member role cannot be adapted differently for different projects

1 1 Jean-Philippe Lang
h1. Roles & permissions
2
3 5 Jean-Philippe Lang
Roles lets you define the permissions that the members have on a project. Each member of a project has a one or multiples Role(s) for the project. A user can have different roles for different projects.
4 1 Jean-Philippe Lang
5
You can create new roles or edit existing ones. You can delete a role only if nobody has this role on a project.
6
7
h2. Roles properties
8
9
* *Name*: display name of the role
10 2 Jean-Philippe Lang
* *Issues can be assigned to this role*: if unchecked, issues can not be assigned to members with this role on a project.
11 1 Jean-Philippe Lang
12 5 Jean-Philippe Lang
h2. Permissions
13 1 Jean-Philippe Lang
14
When editing a role, you can define its permissions by checking/unchecking the different actions.
15
16 4 Jean-Philippe Lang
|_. Permission|_. Description|
17
|\2. *_Project permissions_*|
18
|Create project|Allow non-admin users to create a root project
19
You can specify which role will be automatically given to a non-admin user who creates project (see [[RedmineSettings#Projects]])|
20
|Edit project|Allow user to edit project properties|
21
|Select project modules|Allow user to enable/disable project modules (such as issues tracking, wiki, repository...)|
22
|Manage members|Allow user to add/remove project members or change the roles of existing members|
23
|Manage versions|Allow user to add/edit/delete project versions|
24
|Create subprojects|Allow user to add subprojects to the project|
25
|\2. *_Boards permissions_*|
26
|Manage boards|Allow user to add/edit/delete project forums|
27
|Post messages|Allow user to post new topics in forums|
28 8 Mischa The Evil
|Edit messages|Allow user to edit any message and to remove any message attachments|
29 4 Jean-Philippe Lang
|Edit own messages|Allow user to edit its own messages only|
30
|Delete messages|Allow user to delete any topic or reply|
31
|Delete own messages|Allow user to delete its own topics or replies|
32
|\2. *_Documents permissions_*|
33
|Manage documents|Allow user to add/edit/delete project documents|
34
|View documents|Allow user to view documents|
35
|\2. *_Files permissions_*|
36
|Manage files|Allow user to add/edit/delete project files under the Files section|
37
|View files|Allow user to view files|
38
|\2. *_Issue tracking_*|
39
|Manage issue categories|Allow user to add/edit/delete issue categories|
40
|View Issues|Allow user to view project issues|
41
|Add issues|Allow user to create new issues|
42
|Edit issues|Allow user to fully edit existing issues|
43 7 Mischa The Evil
|Manage issue relations|Allow user to add/remove relations between issues|
44
|Manage subtasks|Allow user to add/remove subtasks to issues|
45 4 Jean-Philippe Lang
|Add notes|Allow user to add comments to existing issues|
46
|Edit notes|Allow user to edit any issue comment|
47
|Edit own notes|Allow user to edit its own comments only|
48
|Move issues|Allow user to move existing issues to another project|
49
|Delete issues|Allow user to delete issues|
50
|Manage public queries|Allow user to add/edit/delete issue queries that are visible by all users|
51
|Save queries|Allow user to save its own issue queries|
52
|View gantt chart|Allow user to view the gantt chart|
53
|View calendar|Allow user to view the calendar|
54
|View watchers list|Allow user to see who is watching an issue|
55 1 Jean-Philippe Lang
|Add watchers|Allow user to add other users as watchers of an issue|
56
|Delete watchers|Allow user to remove watchers of an issue|
57 5 Jean-Philippe Lang
|\2. *_News permissions_*|
58
|Manage news|Allow user to add/edit/delete project news|
59
|Comment news|Allow user to add comments to news|
60
|\2. *_Repository permissions_*|
61
|Manage repository|Allow user to configure the project repository|
62
|Browse repository|Allow user to browse and view the content of the project repository|
63
|View changesets|Allow user to view the chengesets|
64
|Commit access|Used by Redmine.pm to give write access to the project repository
65
See [[Repositories_access_control_with_apache_mod_dav_svn_and_mod_perl]]|
66
|\2. *_Time tracking permissions_*|
67
|Log spent time|Allow user to log time on the project|
68
|View spent time|Allow user to view the time logs on the project|
69
|Edit time logs|Allow user to edit any time log|
70
|Edit own time logs|Allow user to edit its own time logs only|
71
|Manage project activities|Allow user add/edit/delete activities|
72
|\2. *_Wiki permissions_*|
73
|Manage wiki|Allow user to create or delete the project wiki
74
Deleting a wiki is an *irreversible* operation, it deletes all pages and attached files!|
75
|Rename wiki pages|Allow user to rename existing wiki page or assign wiki pages to a parent page|
76
|Delete wiki pages|Allow user to delete wiki pages
77
Deleting a wiki page is an *irreversible* operation, the page and all its history are deleted!|
78 1 Jean-Philippe Lang
|View wiki|Allow user to view the wiki|
79 7 Mischa The Evil
|Export wiki pages|Allow user to export wiki pages to various formats (pdf, html, ...)|
80 5 Jean-Philippe Lang
|View wiki history|Allow user to view older versions of the wiki pages, and diff between versions|
81
|Edit wiki pages|Allow user to edit unprotected wiki pages|
82
|Delete attachments|Allow user to delete existing wiki page attachments|
83
|Protect wiki pages|Allow user to lock/unlock wiki pages, and edit locked pages|
84 4 Jean-Philippe Lang
85 1 Jean-Philippe Lang
h2. System roles
86
87
There are 2 system roles in Redmine: 'Non member' and 'Anonymous'. They are internally used by Redmine and thus can not be deleted.
88
89
* *Non member*: this role lets you define the permissions that a registered user has on projects which he is not a member of.
90
* *Anonymous*: this role lets you define the permissions that anonymous users have on the projects.
91
92 6 Jean-Philippe Lang
Note that these 2 roles only apply to public projects since anonymous users and users who are not member of a private project can not even see it.
93
94 9 Glenn Gould
As a consequence of the fact, that anonymous and non member roles can not be assigned to a specific user or group, but are assigned automatically, the permissions of these roles are global for a given Redmine installation. To be more concrete: You can create different developer-roles (reporter1,reporter2,...) with slightly different permissions to fit specific needs of specific projects. However: you cannot adapt anonymous and non member roles in a way, that non-members are allowed to create board-messages in one project, but are forbidden to do so in another project.
95
96 6 Jean-Philippe Lang
Some permissions can be not given to these roles. For example, the 'Manage members' permission can not be given to non member or anonymous users.