Skip to main content

User roles in Falcony

How to manage user roles

Arttu Vesterinen avatar
Written by Arttu Vesterinen
Updated over a year ago

Role based access rights

In role based access rights each user is given a single role. Roles specify which observation categories and audit templates the user can the user has access to. The role also specifies whether the user can report, view and/or edit observations in all places in the organisation, or just each user's own places (defined in user settings).

User places

When a user is selected to use role based access rights, the user edit page allows admins to set the user's own places. The role can use these places to specify what access rights the user has.

The user's places can be set by either specifying individual places, or by selecting the places based on tags. With tag based place selection it is easy to select groups of places without having to select them individually.

Role management

Report rights

Places where the users may report from

  • User's own places (as defined for each individual user in the user settings) or

  • All places in the organisation.

In Categories you may define the observation categories and/or audit templates that the user may use in Falcony.

View rights

The user can always see what they themselves has reported to Falcony. It is also possible to give additional view rights, defined by the User's own places or All places, and according to Category.

Edit rights

  • Edit rights only to assigned observations

    • The user will not have edit rights to anything unless they are assigned.

  • Edit rights only to reported or assigned observations

    • The user will have edit rights to what they have themselves reported, as well as observations assigned to them.

  • Give additional editing rights to all observations where...

    • Allow users in this role to always have editing rights to certain items, defined by the User's own places or All places, and according to Category.

Observations assigning & participants

Assignee settings

  • This role can't be assigned to observations

    • Users belonging to this role may not be assigned

  • This role can be assigned to observations

    • Allow users in this role to be assigned to certain items, defined by the User's own places or All places, and according to Category.

Observation participants settings

  • This role can edit observation participants

    • The user may see who the observation participants are, and manually add or remove users from the participants list.

  • This role can see observation participants

    • The user may see who the observation participants are, but may not modify the participant list in any way.

  • This role can't see observation participants

    • The user has no visibility of who the observation participants are.

Additional settings

  • Can assign observations to users

    • If this option is selected, the user may manually assign the observation to users.

Examples of role based access rights

Let's say we have an entertainment organisation working in Europe. The places are entertainment venues, and there are a couple different types. The places tag groups are set as following:
- Country, options: Finland, Sweden, Germany
- Venue type, options: Cinema, Opera, Theatre

Now it is possible to set the following access rights:

Name: Admins
Can do what: Can report, view, and edit everything in the service.
How to create: Set user to be a admin in user edit page.

Name: Country manager
Can do what: can report, view and edit any observations that target any venues in the chosen country.
How to create: Create role "Country manager" with report, view and edit rights to user's own places. In the user edit page set that user's own places are set by following tags: Country: [what country/countries this user manages]

Name: Regional chain manager
Can do what: can report, view and edit any observations that target to certain venue type in certain country.
How to create: Create role "Regional chain manager" with report, view and edit rights to user's own places. In the user edit page set that user's own places are set by following tags: Venue type: [what venue type(s) this user manages] and Country: [what countries this user manages]

Name: Security guard
Can do what: can report certain kind of observations that target to certain venue in certain country.
How to create: Create role "Security guard" with report rights to the wanted categories. In the user edit page set that user's own places to only contain where they work.

Did this answer your question?