Permission Groups bring together each of the individual system permissions, which ultimately drives which areas of the system the user can access whilst in each role. The grouping means that you don't need to individually allocate permissions to each role, you can simply create specific groups and then assign those to the roles making it even easier to manage your users.
To configure Permission Groups navigate to Admin > Users, Roles & Permissions > Permission Groups.
Click the name of an existing permission group to edit, or click New > [User Type] within the toolbar to create a new one.
Provide/confirm a Title and Description then click Manage Permissions.
Within each module, you can either tick the permissions individually or use the tickbox at the top of the module to pick all permissions within that section - you can then work through and remove those not required.
Each permission can be made up of different options, including:
Create - This allows you to insert records of this type and applies to things like Pay Salaries or Screening Question Responses.
Read - This setting gives read only access to the permission, helping to share data without the ability to update it.
Update - This allows the user to modify the record in question, by editing the fields etc. When giving the Update permission, the user will also receive the Read option.
Delete - This permission should only be granted to select users to avoid inadvertently deleting records. As there is no 'recycle bin' for accidentally deleted records, we advise caution when granting this permission.
Work through each of the required modules, allocating the permissions using the settings above. Once complete, click Save to confirm. You will then see a summary of the permissions allocated to this permission group, which can then be allocated to the relevant Role.
π€ Tip- Each Role can have multiple permission groups assigned. This means that you can either chose to create all encompassing permissions groups which will be the only one the role needs, or chose to split the system into different sections and have multiple permission groups. By having multiple permission groups on each role, you have more flexibility in terms of updating permissions across different teams and roles.