Skip to main content

Role-Based Permissions in VinAR-ERP

Role-Based Permissions in VinAR-ERPย allow you to control which users can access specific documents and what actions they can perform. Instead of giving every user full access, you can assign roles with specific permissions to ensure they only see and do whatโ€™s necessary for their job.

This helps maintain security, data privacy, and efficiency in the system.

๐Ÿ“Œ How Role-Based Permissions Work

VinAR-ERP assigns permissions based on roles rather than individual users. When a user is given a role, they automatically get the permissions assigned to that role.

โœ”๏ธ Example: A Sales User can access Quotations and Sales Orders, but they wonโ€™t have access to HR or Accounting documents.

Roles control:
โœ… Which documents a user can access (e.g., Sales Orders, Invoices)
โœ… What actions they can perform (Read, Write, Create, Submit, Cancel, etc.)
โœ… Which fields in a document they can see or edit

โš™๏ธ Setting Up Role-Based Permissions

Accessing the Role Permissions Manager

To manage permissions, go to:
๐Ÿ”น Home > Users and Permissions > Role Permissions Manager

Here, you can:
โœ… Define what roles can access which documents
โœ… Set specific actions (Read, Write, Submit, etc.)
โœ… Control access to specific fields in documents

Key Elements of Role-Based Permissions

1๏ธโƒฃ Roles โ€“ These are assigned to users to grant access.
๐Ÿ“Œ Examples: Sales Manager, HR User, Accounts Manager

2๏ธโƒฃ Document Types โ€“ Each type of document has its own permission settings.
๐Ÿ“Œ Examples: Sales Invoice, Leave Application, Stock Entry

3๏ธโƒฃ Permission Levels โ€“ Fields in a document can have different access levels (0 to 9).
๐Ÿ“Œ Example: Some users can edit an order total, while others can only view it.

4๏ธโƒฃ Document Stages โ€“ Permissions apply at different stages:

  • Creation (making a new document)
  • Saving (saving changes)
  • Submission (finalizing the document)
  • Cancellation (undoing an action)
  • Amendment (modifying after submission)

5๏ธโƒฃ User Permissions โ€“ Additional restrictions can limit access to specific records within a document type.
๐Ÿ“Œ Example: A Sales User might only see orders from their assigned territory.

๐Ÿ” Example: Role-Based Permissions for Leave Applications

Let's say we need to manage Leave Applications in a company. Hereโ€™s how different roles will get access:

Employee Role

โœ”๏ธ Can Create a Leave Application
โœ”๏ธ Can Edit only their own application
โœ”๏ธ Can View their own application but NOT others'

HR Manager Role

โœ”๏ธ Can View All Leave Applications
โœ”๏ธ Can Approve/Reject leave requests
โœ”๏ธ Can Submit and Cancel applications

Leave Approver Role

โœ”๏ธ Can View and Edit leave requests from employees under them
โœ”๏ธ Can Approve/Reject applications
โœ”๏ธ Cannot see leave requests of employees they donโ€™t manage

HR User Role

โœ”๏ธ Can Delegate leave approval tasks to others
โœ”๏ธ Can Set User Permissions to control access for other users

This system ensures that:
๐Ÿ”น Employees can only see their own leave requests
๐Ÿ”น HR can see and approve all requests
๐Ÿ”น Managers can only handle leave requests from their own team

๐Ÿ› ๏ธ How to Add a Role-Based Permission Rule

๐Ÿ”น Step 1: Go to Role Permissions Manager
๐Ÿ”น Step 2: Click Add a New Rule
๐Ÿ”น Step 3: Select a Role and Permission Level
๐Ÿ”น Step 4: Define what actions (Read, Write, Submit, etc.) this role can perform
๐Ÿ”น Step 5: Save and apply changes

๐Ÿš€ Advanced Role-Based Permission Features

1๏ธโƒฃ Restricting Access to Specific Fields

Sometimes, a user needs access to a document but not all its fields.

โœ”๏ธ Example:

  • A Sales User can see customer names but not financial details.
  • An HR User can see an employeeโ€™s department but not their salary.

This can be managed by assigning different permission levels to fields.

2๏ธโƒฃ Select-Only Access for Linked Documents

A user may need to select a document in a dropdown but not view its details.

โœ”๏ธ Example:

  • An employee choosing a Leave Type in a leave request doesnโ€™t need full access to all leave types.
  • A sales agent selecting a customer in a sales order shouldnโ€™t see all customer details.

To allow this, grant Select permission to the role for that document type.

3๏ธโƒฃ Setting User Permissions for Specific Records

If a user needs access to only some records within a document type, use User Permissions.

โœ”๏ธ Example:

  • A Sales Manager can see all Sales Orders
  • A Sales Executive can see only their own Sales Orders
  • A Territory Manager can see Sales Orders from their assigned region

๐Ÿ”น Step 1: Go to User Permissions
๐Ÿ”น Step 2: Select the User and the Document Type (e.g., Company)
๐Ÿ”น Step 3: Choose the specific value (e.g., โ€œUnico Plastics Inc.โ€)
๐Ÿ”น Step 4: Save

Now, the user will only see records linked to Unico Plastics Inc.

๐Ÿ”‘ Key Takeaways

โœ… Role-Based Permissions ensure users only access what they need
โœ… Different roles get different levels of access to documents and fields
โœ… You can restrict access to specific records using User Permissions
โœ… Permissions can be customized based on document stage, field level, and linked records

With Role-Based Permissions in VinAR-ERP, you can keep your data secure while ensuring the right people have the right access.

Back to top