Authorization refers to what users can access. Primavera Gateway uses Groups and Roles to restrict access to the application.
Groups: Security groups make it easier for administrators to assign permission sets to multiple users at the same time. In Gateway, administrators can create security groups with permission sets, and then assign users to these groups.
Roles: User roles in Primavera Gateway can be defined with or without data access. Users can be assigned any of the following roles in Primavera Gateway:
- Admin role: This is a super user role that enables the user to perform all actions in the Primavera Gateway application.
- Admin role with no data access: This role is identical to the Admin role with the following exception: These users cannot view the details of the data passed in each flow step, or download the details of the log files when monitoring a synchronization job. However, they can view errors and warning messages associated with each step.
- Developer role: This role enables the user to create data mappings and flow types. Users have access to the data dictionary, workflows, and configuration global settings.
- User role: This role enables the user to synchronize data between two systems and monitor the results.
- User role with no data access: This role is identical to the User role with the following exception: These users cannot view the details of the data passed in each flow step or download the details of the log files when monitoring a synchronization job. However, they can view errors and warning messages associated with each step.