This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK

Make the ability to add user permissions hierarchical

Idea ID 2850646

Make the ability to add user permissions hierarchical

Status: Waiting for Votes Submitted by Commodore on ‎2021-01-14 18:04

In order to reduce requests to our small admin team, we create a custom user role that allows a minimal number of users in each workspace to add users to Octane and provide the appropriate permissions. The issue we constantly run into, is that those users can provide any permissions, even Workspace and Space admin permissions to any user including themselves.

This poses a risk as we don't want users to have Workspace Admin or Space admin capabilities. These permissions should be hierarchical so those users with our custom "Project Admin" permissions can't apply higher level permissions to themselves or other users. At the very least we should be able to create business rules that will allow us to block certain roles from doing these things where there are no permission options. We cannot currently add business rules for administrative purposes.

In our case, we had to roll back those permissions so they cannot add or edit users, this creates additional work for our users because they now have to create tickets for our team to add/edit users, and creates additional work for our team in order to add/edit those users.

2 Comments
gshank875
Ensign
Ensign
‎2021-01-14 19:55
‎2021-01-14 19:55

This feature is very important and should be implemented as soon as possible.

Sigal_Ishay
Micro Focus Expert
Micro Focus Expert
‎2021-02-04 08:23
‎2021-02-04 08:23
Status changed to: Waiting for Votes

Hi @Tuboysdad 

Indeed there is no way currently to manage hierarchy of the roles, however,  only shared space admin can assign Space Admin permissions to users.

note also that you can customize the workspace admin role according to the permissions allowed to users at workspace level and disable other permissions that will be done by space admin.

In any case, As the requested functionality indeed is not available for Octane and the use case is clear,  i will open this request for votes,

Regards,

Sigal.

 

Most "Liked" Contributors
View All ≫
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.