Context Navigation

source: trunk/doc/src/docbook/admindoc/user_administration.xml @ 3300

Visit:

Last change on this file since 3300 was 3300, checked in by Martin Svensson, 16 years ago
References #549. More text, mainly about groups and roles
Property svn:eol-style set to `native` Property svn:keywords set to `Id`
File size: 21.2 KB

Line
1	<?xml version="1.0" encoding="UTF-8"?>
2	<!DOCTYPE chapter PUBLIC
3	"-//Dawid Weiss//DTD DocBook V3.1-Based Extension for XML and graphics inclusion//EN"
4	"../../../../lib/docbook/preprocess/dweiss-docbook-extensions.dtd">
5	<!--
6	$Id: user_administration.xml 3300 2007-05-07 15:08:27Z martin $
7
8	Copyright (C) Authors contributing to this file.
9
10	This file is part of BASE - BioArray Software Environment.
11	Available at http://base.thep.lu.se/
12
13	BASE is free software; you can redistribute it and/or
14	modify it under the terms of the GNU General Public License
15	as published by the Free Software Foundation; either version 2
16	of the License, or (at your option) any later version.
17
18	BASE is distributed in the hope that it will be useful,
19	but WITHOUT ANY WARRANTY; without even the implied warranty of
20	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21	GNU General Public License for more details.
22
23	You should have received a copy of the GNU General Public License
24	along with this program; if not, write to the Free Software
25	Foundation, Inc., 59 Temple Place - Suite 330,
26	Boston, MA 02111-1307, USA.
27	-->
28
29	<chapter id="user_administration">
30	<?dbhtml dir="user_administration"?>
31	<title>Account administration</title>
32
33	<sect1 id="user_administration.users">
34	<title>Users administration</title>
35	<para>
36	The user list is accessed with
37	<menuchoice>
38	<guimenu>Administrate</guimenu>
39	<guimenuitem>Users</guimenuitem>
40	</menuchoice>
41	and from here are users' account and contact information managed.
42	</para>
43
44	<sect2 id="user_administration.users.edit">
45	<title>Edit user</title>
46
47	<helptext external_id="user.edit" title="Edit user account">
48	<sect3 id="user_administration.users.edit.properties">
49	<title>Properties</title>
50	<para>
51	These are the properties for an user account.
52	</para>
53	<variablelist>
54	<varlistentry>
55	<term>
56	<guilabel>Name</guilabel>
57	</term>
58	<listitem>
59	<para>
60	The full name of the user that is associated with this account.
61	(Required)
62	</para>
63	</listitem>
64	</varlistentry>
65	<varlistentry>
66	<term>
67	<guilabel>Login</guilabel>
68	</term>
69	<listitem>
70	<para>
71	A login name to use when logging in to this account. (Required)
72	</para>
73	</listitem>
74	</varlistentry>
75	<varlistentry>
76	<term>
77	<optional>
78	<guilabel>External ID</guilabel>
79	</optional>
80	</term>
81	<listitem>
82	<para>Id used identify the user outside BASE. (Optional)</para>
83	</listitem>
84	</varlistentry>
85	<varlistentry>
86	<term>
87	<guilabel>New password</guilabel>
88	</term>
89	<listitem>
90	<para>
91	This is used together with the login name to log in with this
92	account. This is required for a new user or if the password
93	should be changed.
94	</para>
95	</listitem>
96	</varlistentry>
97	<varlistentry>
98	<term>
99	<guilabel>Retype password</guilabel>
100	</term>
101	<listitem>
102	<para>
103	Retype the password in <guilabel>New password</guilabel>.
104	</para>
105	</listitem>
106	</varlistentry>
107	<varlistentry>
108	<term>
109	<optional>
110	<guilabel>Quota</guilabel>
111	</optional>
112	</term>
113	<listitem>
114	<para>Set disk quota for this account.(Required)</para>
115	</listitem>
116	</varlistentry>
117	<varlistentry>
118	<term>
119	<optional>
120	<guilabel>Quota group</guilabel>
121	</optional>
122	</term>
123	<listitem>
124	<para>
125	Set this if the account should belong to a group with specified
126	quota.(Optional)
127	</para>
128	</listitem>
129	</varlistentry>
130	<varlistentry>
131	<term>
132	<optional>
133	<guilabel>Home directory</guilabel>
134	</optional>
135	</term>
136	<listitem>
137	<para>
138	Set the account's home directory. A new directory, either empty
139	or from a template, can be created if editing a new
140	user.(Optional)
141	</para>
142	</listitem>
143	</varlistentry>
144	<varlistentry>
145	<term>
146	<optional>
147	<guilabel>Expiration date</guilabel>
148	</optional>
149	</term>
150	<listitem>
151	<para>
152	Define a date in this field if the account should expire on a
153	certain day. The account will be disabled after this
154	date.(Optional)
155	<tip>
156	<para>
157	Use
158	<guibutton>Calendar…</guibutton>
159	to pick a date from a calendar-pop-up window.
160	</para>
161	</tip>
162	</para>
163	</listitem>
164	</varlistentry>
165	<varlistentry>
166	<term>
167	<guilabel>Multi-user account</guilabel>
168	</term>
169	<listitem>
170	<para>
171	This checkbox should be ticked if the account should be used by
172	more one user. It will block the users of the account to change
173	password, contact information and other personal information.
174	</para>
175	</listitem>
176	</varlistentry>
177	<varlistentry>
178	<term>
179	<guilabel>Disabled</guilabel>
180	</term>
181	<listitem>
182	<para>
183	Disable the account to be used.
184	</para>
185	</listitem>
186	</varlistentry>
187	</variablelist>
188	</sect3>
189	<para>
190	Go to the other tabs if there are any changes to do otherwise press
191	<guibutton>Save</guibutton>
192	to save the values or
193	<guibutton>Cancel</guibutton>
194	to abort.
195	</para>
196	<seeother>
197	<other external_id="user.edit.contact">Edit user's contact information</other>
198	<other external_id="user.edit.membership">Edit user's membership</other>
199	</seeother>
200	</helptext>
201	<helptext external_id="user.edit.contact" title="Edit user's contact information">
202	<sect3 id="user._administration.users.edit.contact">
203	<title>Contact information</title>
204	<para>
205	Information how get in contact with the user that is connected to the
206	account. All fields on this tab are optional and do not necessarily need to
207	have a value.
208	</para>
209	<variablelist>
210	<varlistentry>
211	<term>
212	<optional>
213	<guilabel>Email</guilabel>
214	</optional>
215	</term>
216	<listitem>
217	<para>
218	User's email address.There is some verification of the value but
219	their is no check if the email really exists.
220	</para>
221	</listitem>
222	</varlistentry>
223	<varlistentry>
224	<term>
225	<optional>
226	<guilabel>Organisation</guilabel>
227	</optional>
228	</term>
229	<listitem>
230	<para>
231	The company or organisation that the user works for.
232	</para>
233	</listitem>
234	</varlistentry>
235	<varlistentry>
236	<term>
237	<optional>
238	<guilabel>Address</guilabel>
239	</optional>
240	</term>
241	<listitem>
242	<para>
243	User's address. Use the magnifying glas down to the right, to
244	edit this property in a larger window - opened in a pop-up
245	window.
246	</para>
247	</listitem>
248	</varlistentry>
249	<varlistentry>
250	<term>
251	<optional>
252	<guilabel>Phone</guilabel>
253	</optional>
254	</term>
255	<listitem>
256	<para>
257	User's phone number(s)
258	<note>
259	<para>
260	There is no special field for mobile phone, but it works
261	fine to put more then one number in this field.
262	</para>
263	</note>
264	</para>
265	</listitem>
266	</varlistentry>
267	<varlistentry>
268	<term>
269	<optional>
270	<guilabel>Fax</guilabel>
271	</optional>
272	</term>
273	<listitem>
274	<para>User's fax number.</para>
275	</listitem>
276	</varlistentry>
277	<varlistentry>
278	<term>
279	<optional>
280	<guilabel>Url</guilabel>
281	</optional>
282	</term>
283	<listitem>
284	<para>Fill in any URL associated with the user here.</para>
285	</listitem>
286	</varlistentry>
287	<varlistentry>
288	<term>
289	<optional>
290	<guilabel>Description</guilabel>
291	</optional>
292	</term>
293	<listitem>
294	<para>
295	Other useful contact information or description about the user should be
296	written in this field. Use the magnifying glass to edit the information in
297	a pop-up window with a larger text-area.
298	</para>
299	</listitem>
300	</varlistentry>
301	</variablelist>
302	</sect3>
303	<para>
304	Go to the other tabs if there are any changes to do otherwise press
305	<guibutton>Save</guibutton>
306	to save the values or
307	<guibutton>Cancel</guibutton>
308	to abort.
309	</para>
310	<seeother>
311	<other external_id="user.edit">Edit account</other>
312	<other external_id="user.edit.membership">Edit user's membership</other>
313	</seeother>
314	</helptext>
315
316	<helptext external_id="user.edit.membership" title="Edit user's membership">
317	<sect3 id="user_administration.users.edit.membership">
318	<title>User's membership</title>
319	<para>
320	An user's membership in groups and roles can be set on this tab. The
321	membership can also be changed by adding/removing the user to/from a
322	group's/role's list of members that is described in
323	<link linkend="user_administration.groups.edit">edit group</link>
324	and
325	<link linkend="user_administration.roles.edit">edit role</link>
326	</para>
327	<para>
328	Use
329	<guibutton>Add groups…</guibutton>
330	or
331	<guibutton>Add roles…</guibutton>
332	to add a membership in a group or a role. Mark the checkboxes for those
333	groups or roles that the user should become a member in.
334	</para>
335	<para>
336	Use
337	<guibutton>Remove</guibutton>
338	to delete membership(s) from selected groups and roles in the list. The
339	selected items will then disappear from the list of memberships.
340	</para>
341	</sect3>
342	<para>
343	Go to the other tabs if there are any changes to do otherwise press
344	<guibutton>Save</guibutton>
345	to save the values or
346	<guibutton>Cancel</guibutton>
347	to abort.
348	</para>
349	<seeother>
350	<other external_id="user.edit">Edit account</other>
351	<other external_id="user.edit.contact">Edit user's contact information</other>
352	</seeother>
353	</helptext>
354	</sect2>
355	</sect1>
356
357	<sect1 id="user_administration.groups">
358	<title>Groups administration</title>
359	<para></para>
360
361	<sect2 id="user_administration.groups.edit">
362	<title>Edit group</title>
363	<para></para>
364	<helptext external_id="group.edit" title="Edit group">
365	<sect3 id="user_administration.groups.edit.properties">
366	<title>Properties</title>
367	<variablelist>
368	<varlistentry>
369	<term>
370	<guilabel>Name</guilabel>
371	</term>
372	<listitem>
373	<para>Group's name.(Required)</para>
374	</listitem>
375	</varlistentry>
376	<varlistentry>
377	<term>
378	<optional>
379	<guilabel>Description</guilabel>
380	</optional>
381	</term>
382	<listitem>
383	<para>
384	Description about the group. The magifying glass, down to the
385	right, can be used to open the text in a larger text area.
386	</para>
387	</listitem>
388	</varlistentry>
389	<varlistentry>
390	<term>
391	<optional>
392	<guilabel>Quota</guilabel>
393	</optional>
394	</term>
395	<listitem>
396	<para>
397	With this property it's possible to limit the quota of total
398	disk space for the group members. Select
399	<guilabel>-none-</guilabel>
400	from the dropdown list if the group shouldn't be a quota group.
401	There are some presets of quotas that comes with the BASE2
402	installation, besides a couple with different size of total disk
403	space there are one called
404	<guilabel>No quota</guilabel>
405	and one with
406	<guilabel>Unlimited quota</guilabel>
407	. The names speak for them self.
408	</para>
409	</listitem>
410	</varlistentry>
411	</variablelist>
412	</sect3>
413	<para>
414	Go to the other tab,
415	<guilabel>Members</guilabel>
416	, if there are any changes to do otherwise press
417	<guibutton>Save</guibutton>
418	to save the values or
419	<guibutton>Cancel</guibutton>
420	to abort.
421	</para>
422	<seeother>
423	<other external_id="group.edit.membership">Edit group members</other>
424	</seeother>
425	</helptext>
426
427	<helptext external_id="group.edit.membership" title="Edit group members">
428	<sect3 id="user_administration.groups.edit.members">
429	<title>Group members</title>
430	<para>
431	A group can have both single users and whole groups as members. Group
432	members have access to those items that are shared to the group. Each user
433	in the group can choose to share their own items to one or more of the other
434	members or to the whole group.
435	</para>
436	<para>
437	The listbox shows the group's members, both users and other groups.
438
439	Removing members from a group are done by first select one or several
440	members in the list and then click on
441	<guibutton>Remove</guibutton>
442	. The selected items will then disappear from the list.
443	</para>
444	</sect3>
445	<para>
446	Go to the group tab if there are any changes to do, otherwise press
447	<guibutton>Save</guibutton>
448	to save the values or
449	<guibutton>Cancel</guibutton>
450	to abort.
451	</para>
452	<seeother>
453	<other external_id="group.edit">Edit group properties</other>
454	</seeother>
455	</helptext>
456	</sect2>
457
458	</sect1>
459
460	<sect1 id="user_administration.roles">
461	<title>Roles administration</title>
462	<para></para>
463	<sect2 id="user_administration.roles.defaultroles">
464	<title>Default roles</title>
465	<para>
466	There some default roles that come with BASE2. These are configured to cover the
467	normal user roles that can appear. A more detailed description of the different
468	roles and when to use them follows here.
469	</para>
470	<variablelist>
471	<varlistentry>
472	<term>Administrator</term>
473	<listitem>
474	<para>
475	This role gives the user full permission to everything in BASE and also
476	possibility to share items with the system-group 'Everyone'. Users that
477	are supposed to administrate the server, users accounts, groups etc.
478	should have this role.
479	</para>
480	</listitem>
481	</varlistentry>
482	<varlistentry>
483	<term>Supervisor</term>
484	<listitem>
485	<para>
486	Users that are members of this role has permission to read everything in
487	BASE.This role doesn't let the members to actually do anything in BASE
488	except read.
489	</para>
490	</listitem>
491	</varlistentry>
492	<varlistentry>
493	<term>Power user</term>
494	<listitem>
495	<para>
496	This role allows it's members to do some things that an ordinary user
497	not is allowed to. This role can be proper for those users that are in
498	some kind of leading position over workgroups or projects.
499	</para>
500	</listitem>
501	</varlistentry>
502	<varlistentry>
503	<term>User</term>
504	<listitem>
505	<para>
506	Role for regular users to have. This allows the members to do common
507	things in BASE as analysis, creating biomaterials and experiments and so
508	on.
509	</para>
510	</listitem>
511	</varlistentry>
512	</variablelist>
513	</sect2>
514
515	<sect2 id="user_administration.roles.edit">
516	<title>Edit role</title>
517	<para></para>
518	<helptext external_id="role.edit" title="Edit role">
519	<sect3 id="user_administration.roles.edit.properties">
520	<title>Properties</title>
521	<para></para>
522	<variablelist>
523	<varlistentry>
524	<term>
525	<guilabel>Name</guilabel>
526	</term>
527	<listitem>
528	<para>The name of the role. (Required)</para>
529	</listitem>
530	</varlistentry>
531	<varlistentry>
532	<term>
533	<guilabel>System-level permissions</guilabel>
534	</term>
535	<listitem>
536	<itemizedlist>
537	<listitem>
538	<para>
539	With
540	<guilabel>Share to Everyone</guilabel>
541	set the role is allowed to share items to the
542	system-group 'Everyone'.
543	</para>
544	</listitem>
545	<listitem>
546	<para>
547	<guilabel>Act as another user</guilabel>
548	- property makes it possible for the one with this role
549	to login from the menu bar as another user. This is used
550	by job agents when they should act as the user who
551	started the job.
552	</para>
553	</listitem>
554	</itemizedlist>
555	</listitem>
556	</varlistentry>
557	<varlistentry>
558	<term>
559	<guilabel>Description</guilabel>
560	</term>
561	<listitem>
562	<para>Description and information about the role.(Optional)</para>
563	</listitem>
564	</varlistentry>
565	</variablelist>
566	<para>
567	Set the properties and procceed then to either one of the other tabs or by
568	clicking on one of the buttons:
569	<guibutton>Save</guibutton>
570	to save the changes or
571	<guibutton>Cancel</guibutton>
572	to abort.
573	</para>
574	</sect3>
575	<seeother>
576	<other external_id="role.edit.permissions">Role permissions</other>
577	<other external_id="role.edit.members">Role members</other>
578	</seeother>
579	</helptext>
580
581	<helptext external_id="role.edit.permissions" title="Edit role permissions">
582	<sect3 id="user_administration.roles.edit.permissions">
583	<title>Permissions</title>
584	<para>
585	A role's permissions are defined for each item type within BASE 2. Set the
586	role's permission on an item type by first selecting the item(s) in the
587	list and then tick those permissions that should be applied. Not all
588	permissions can be applied to every item type, that's why permission
589	checkboxes becomes disabled when selecting some of the item types
590	</para>
591	<para>
592	After each item type is a string inside square brackets that shows what kind
593	of permissions the current role has on that particular item type. The
594	permissions that don't have been set are viewed with '-' inside the square
595	brackets and those which have been set are represented with characters that
596	are listed below.
597	</para>
598	<itemizedlist spacing="compact">
599	<listitem>
600	<guilabel>DENIED</guilabel>
601	= Deny access to the selected item. This exclude all the other
602	permissions by unchecking the other check boxes.
603	</listitem>
604	<listitem>
605	<guilabel>C</guilabel>
606	= Create
607	</listitem>
608	<listitem>
609	<guilabel>R</guilabel>
610	= Read
611	</listitem>
612	<listitem>
613	<guilabel>U</guilabel>
614	= Use
615	</listitem>
616	<listitem>
617	<guilabel>W</guilabel>
618	= Write
619	</listitem>
620	<listitem>
621	<guilabel>D</guilabel>
622	= Delete
623	</listitem>
624	<listitem>
625	<guilabel>O</guilabel>
626	= Take ownership
627	</listitem>
628	<listitem>
629	<guilabel>P</guilabel>
630	= Set permission
631	</listitem>
632	</itemizedlist>
633	<para>
634	Set the role's permission on each one of the item types and procceed then to
635	one of the other tabs or click on one of the buttons:
636	<guibutton>Save</guibutton>
637	to save the changes or
638	<guibutton>Cancel</guibutton>
639	to abort.
640	</para>
641	</sect3>
642	<seeother>
643	<other external_id="role.edit">Edit properties</other>
644	<other external_id="role.edit.mebers">Role members</other>
645	</seeother>
646	</helptext>
647
648	<helptext external_id="role.edit.members" title="Role members">
649	<sect3>
650	<title>Members</title>
651	<para>
652	Users that are members of a role are listed in the listbox located on this
653	tab.Members can be added or removed with the two buttons, located to the
654	right of the listbox,
655	<guibutton>Add users…</guibutton>
656	and
657	<guibutton>Remove</guibutton>
658	.
659	</para>
660	<variablelist>
661	<varlistentry>
662	<term>Add users to list</term>
663	<listitem>
664	<para>
665	Click on
666	<guibutton>Add users…</guibutton>
667	and select the users that should be added from the list in the
668	pop-up window. Press then on
669	<guibutton>Ok</guibutton>
670	button to close the pop-up window and add the selected users.
671	Use
672	<guibutton>Cancel</guibutton>
673	or just close the pop-up to abort and return to main window.
674	</para>
675	</listitem>
676	</varlistentry>
677	<varlistentry>
678	<term>Remove users from list</term>
679	<listitem>
680	<para>
681	Members are removed from the list by first selecting them and
682	then pressing
683	<guibutton>Remove</guibutton>
684	. The selected user(s) are removed immediately.
685	</para>
686	</listitem>
687	</varlistentry>
688	</variablelist>
689	<para>
690	Press
691	<guibutton>Save</guibutton>
692	to save the role or go to one of the other tabs if there are more that needs
693	to be set. Use
694	<guibutton>Close</guibutton>
695	to abort and close the window without saving the changes.
696	</para>
697	</sect3>
698	<seeother>
699	<other external_id="role.edit">Edit properties</other>
700	<other external_id="role.edit.permissions">Role permissions</other>
701	</seeother>
702	</helptext>
703	</sect2>
704	</sect1>
705
706	<sect1 id="user_administration.quota">
707	<title>Disk space/quota</title>
708	<para></para>
709	</sect1>
710	</chapter>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: