Subtypes and Security

Object subtypes have the same set of allowed operations as their parent object type. You must create a set of roles and assign each role to a set of operations on object subtypes. Users with a particular role can then perform the operations on the subtypes specified for the role, if the user group in which they have the role is assigned to the object.

If you create additional subtypes, you can assign different roles to their operations. For example, you might want to allow different people to view clinical and financial reports. To do this, you must create the appropriate roles and assign them to the appropriate operations on only the appropriate object subtype. For example:

• Give the Financial Officer role privileges on the Financial Output subtype but not the Clinical Output subtype.
• Give the Statistician role privileges on the Clinical Output subtype but not the Financial Output subtype.
• Give the Trial Administrator role privileges on both Output subtypes.