Library Security and Authorization

How to apply additional layers of security to resources within your library

By default organization "Owners" and "Administrators" will have access to all resources within the library. A resource is defined as a record, experiment or dataset. As an organization "Owner" or "Administrator" you can apply security settings to control resource access to organization "Members".

Library Access Control 2

Protecting Records 

This will allow you to apply security preferences to specific records. Select the record(s) you would like to protect followed by "Set Protection". A drop down will appear for you to select "Enable Protection". 

Screen Shot 2023-02-28 at 3.25.51 PM

Once the protection has been enabled, users within your organization who have the role "Member" will be unable to see those records. 

Screen Shot 2023-02-28 at 3.29.19 PM

(View of protected records as a "Member"). 

Additional security customizations can be applied to each record. Select the record to open the Record Edit page. Under the Security tab you will see a list of members within the organization.

Record security

Members can be granted permission to; 

Read: See all dictionary properties and their values associated with the record. 

Update: Update the dictionary properties associated with the record. 

Delete: Delete the record. 

Select the appropriate checkbox next to member that you would like to grant additional permissions to. To save changes select "Update" in the bottom right hand corner of the table. 

Any security settings applied to a record will automatically be applied to any experiments and data associated with the record. 

To disable record protection, select the record that is currently protected, select "Set Protection" followed by "Disable Protection"

Protecting Models  

Protecting a model will enable you to protect all underlying recored associated with the model. 

model security

Open the "Edit Model" page by selecting the 3 dots next to the model you would like to protect. Scroll down to the bottom of the bottom of the page and select the checkbox that says "Protect model".  This will display a table where you can update security preferences for members within your organization. 

Once a model is protected it will not be visible to members who are not granted permission to read or update it. 

Members can be granted permission to; 

Read: See the model and associated records within the library 

Update: Update the model. This includes adding/ removing conditions. 

Delete: Delete the model. 

Select the appropriate checkbox next to member that you would like to grant additional permissions to. To save changes select "Update" in the bottom right hand corner of the table. 

Only Administrators and Owners can create new models. 

 

General Summary

  • To "Protect" a resource within the library is to prevent users with the role "Member" from accessing the resource
  • Additional Read, Update, and Delete privlages can be granted to specific members 
  • Only Organization Owners and Administrators can apply security settings 
  • When a Model is protected, all records of that model are automatically protected.
  • When a Record is protected, all experiments derived from that record are automatically protected.
  • Only Organization Owners and Administrators can create Models.