irCatalog permissions can be overridden at the “Def” (definition) level. The levels available for override are:
- Rule application
- Rule set
- Rule Flow
- Vocabulary Template group
- UDF Library
- Data Element
- End Point
To override the permissions for the rule application, you can do so within irAuthor via the CATALOG tab > Permissions group > Rule Application button.
The Schema can be overridden within irAuthor via the CATALOG tab > Permissions group > Schema button.
All other rule elements can be overridden within irAuthor by the “Permissions” option on the associated right click menu.
In order to override these permissions, the logged in user must have the “AdministerDefs” permission and the associated rule element must be checked out. Not all permissions are shown, as some permissions are only defined at the global irCatalog level. The following can be overridden, but not all apply to every rule element. The list below shows the name visible in the override screen and the associated permission name from irCatalog.
- Administer -> AdministerDefs
- ModifySharedElement -> ModifySharedElements
- Insert -> InsertDefs
- Modify -> ModifyDefs
- Remove -> RemoveDefs
- Open -> OpenDefs
Click “Add” to select a role for which you would like to override permissions. Once added, make override changes for the associated permissions below. To override, click the “Override” checkbox. The selection in the “Allow” checkbox will be the permission that overrides the irCatalog global permission for that role and rule element. You can add multiple roles and modify permissions for each individually.
If a user has more than one role assigned with shared permissions (e.g. ModifyDefs), if any of the permissions are overridden to NOT allow, the user will not be allowed to execute that function.