Understanding the Difference Between All and Own in Role Permissions
When you create a role and assign permissions, you’ll notice options like:
-
All
- Own
These choices define how broadly users with that role can access records and perform actions.
What Does - All Mean?
If you assign a permission with All, it means the user will have access to all records in that module, regardless of who created them.
Example:
-
A user has the permission Workspace - List - All
This user can see every workspace, including those created by other users.
Similarly, if the user has:
-
Edit - All
-
Delete - All
They can edit or delete any record in that module, no matter who created it.
What Does - Own Mean?
If you assign a permission with Own, it means the user can access only the records they created themselves.
Example:
-
A user has the permission Workspace - List - Own
This user will see only the workspaces they personally created. They won’t see records created by other users.
Likewise:
-
Edit - Own
-
Delete - Own
User can edit or delete only their own records, not anyone else’s.
Important Note About Dashboard Access
When you create a new role, remember to check the permission for Dashboard access.
If the Dashboard permission is not selected, users assigned to that role might receive an “Access Denied” error when logging in.
Tip: Always review your roles and permissions carefully before assigning them to users. Proper configuration helps protect your data and ensures users can work efficiently!