Setting Permissions and Pushing Artifacts

Set artifact permissions when you import or select an artifact. Push artifacts to be accessible to Favorites.

Rules for setting permissions and pushing artifacts:

To push artifacts, you need proper permissions and a role that enables you to push them. Push any artifact, except multiple-cycle jobs and folders.
Make artifacts accessible in the repository by changing their permissions
Make artifacts accessible on Favorites by pushing them to Favorites
To apply permissions to artifacts within folders, you need proper permission and role.

To edit permissions for files and folders:

From Explore, right-click the file or folder whose permissions you want to modify.
You can select multiple items in Explore and apply Edit Permissions. Permissions can only be applied to items that a user has Full Control permission.
Select Edit Permissions.
To complete Apply Permissions to Children dialog, see Applying Permissions to Children of the Selected Folder.

To apply permissions to artifacts in a folder:

Right-click on a folder in Explore.
Select Apply Permissions to Children.
To complete Apply Permissions to Children dialog, see Importing Artifacts.
Set permissions for the children of the folder.
The columns displayed for selected users, groups, and roles in the Apply Permissions to Children dialog depend on the artifact type within the folder. Use the description for each of the permissions as a guideline:
- Inherit—Not set to anything. Inherit defaults to No Access.
- No Access—Users cannot see the object.
- View—View document but cannot modify.
- Job Output Only—View and produce output in the folder. No additional Modify capabilities.
- Modify—Make changes but not delete.
- Full Control—Access the Apply Permissions to Children dialog (add/edit/delete permissions to other users/groups/roles).
- Run—Ability to run a job.
- Modify and Run—Applicable only to jobs. You can modify the properties of the job and run the job. If you have modify permission only, you can modify the properties of the job but not run the job.
- View and Process—View documents and refresh data, cannot modify. These are adaptive states and are applicable only to Interactive Reporting artifacts
- Analyze—Create and modify charts, pivots, and reports in the document, but cannot modify the queries or refresh the data. These are adaptive sSates and are applicable only to Interactive Reporting artifacts.
- Analyze and Process—Create and modify charts, pivots and reports in the document and refresh data. Cannot modify the query.
- Query and Analyze—Create and modify charts, pivots and reports in the document and refresh data. Can build and limit queries before processing.
- Data Model and Analyze—Create and modify charts, pivots and reports in the document and refresh data. Can build and limit queries before processing. Can create and modify data models. These are adaptive states and are applicable only to Interactive Reporting artifacts.
Once you are done making your selections, select OK.
Note:
Permissions are only applied to artifacts within a folder in which a user has Full Control permission.

Example of Inherit Permission

The following is an example of a BQY file and permissions set in the Permissions dialog.

UserA:

Inherit for File Permission
View for Adaptive State
Inherit for Favorite

GroupA:

View for File
Process for Adaptive
Inherit for Favorite

RoleA:

Modify for File
Datamodel for Adaptive
Pushed for Favorite

Result of above scenario:

If UserA belongs to GroupA then UserA is able to View the File
If UserA has RoleA then UserA can Modify the File
If UserA does not belong to GroupA or RoleA then UserA has NoAccess to the file

Inherit basically means inherit from the role's or group's permissions and the same applies for Favorites.

Applying Permissions to Children of the Selected Folder

In the dialog, Apply Permissions to Children of the Selected Folder, you can choose to overwrite or merge permissions, thus eliminating the need to redefine permissions from scratch.

Note:

Permissions change for all files in folder when you click OK. However, permissions are not saved for future use. If a new artifact is subsequently added to that folder, it does not get this permission. However, you can go to individual artifacts in that folder and change the permissions.

To change permissions or push artifacts:

Specify selected users, groups, and roles.

To populate the list with all users, groups or roles leave the text box blank, select Update List.

To populate the list with specified users, groups or roles:

To filter the list by name, select begin with, contain, or are in group and enter letters.

To filter the list by user type, select tabs for Users, Groups, or Roles, then click Update List.

Available Users, Groups, and Roles display artifacts based upon the selections you made in the drop-down lists.

Note:

If all of the artifacts are not listed, filter the list with criteria or contact your administrator. Your administrator determines the maximum number of artifacts to list. Wild cards are not supported and the filter is not case sensitive.

Select a user, group, or role from Users, Groups, or Roles tab, then click
From Selected Users, Groups and Roles select a name from the Name column. From Access or Access to file drop-down set permissions:
- Inherit—Not set to anything. This permission defaults to No Access.
- No Access—Cannot access the document.
- View—Can only display the document.
- Modify—Change, but not delete.
- Full control—Display, change, and delete.
  See Setting Permissions on Interactive Reporting Documents.
From the Favorite drop down, select Pushed to push the artifact to the users Favorites or Inherit (not pushed) to view only if this is the only permission set.

Repeat previous steps to set additional permissions for other users, groups, or roles.

Note:

If all of the users/groups/roles in which you have access to are not listed, filter the list with different criteria or contact your administrator. Your administrator determines the maximum number of users/groups/roles to list.

Select one of the following:
1. To remove existing permissions and set new permissions, select Overwrite current permissions.
2. To redefine some permissions, and add new permissions to the existing ones, select Merge with the current permission. The changes are applied to folder child elements recursively.
  Note:
  In a merge, if a user already exists in Apply Permissions to Children for some artifacts, and this user is granted new permissions, the new permissions are in force.
To apply these permissions for an artifact, click OK.
Do the following:
1. For files, if you want permissions to apply to other imported content by default, click Make these the default permissions for all files I import.
2. For folders, if you want permissions to apply to other imported content by default, click Make these the default permissions for all folders I create.
This automatically sets the same permissions for all files and folders you import. You can change permissions for each file or reset your default access permissions.
Click OK.
Note:
To remove a role, group, or user from the selected list, click after highlighting the name to be removed.