Lists App permissions -

App permissions

Lists app permissions control what functionality within the Lists app a user has access to. App permissions were introduced with the Poppy release.

Lists app permission name

Lists app permission name

1

Lists (Enable): Can view lists

2

Lists (Edit): Can create, edit, and refresh lists

3

Lists (Export): Can create, edit, refresh, and export lists

4

Lists (Delete): Can create, edit, refresh, and delete lists

5

Lists (Admin): All permissions

Content permissions

Content permissions limit access to record types in Lists app (and FQM) based on the assigned permission(s) the user already has to view record types in FOLIO. This will help ensure sensitive/confidential data is only available to library staff who must have access to it. Content permissions were introduced in the Ramsons release.

Note: as of the Ramsons release, the user needs all of the listed “get” content permissions for an entity to be able to see that content (e.g. partial content permissions do not provide partial access to that entity in the Lists app; no content for the entity is displayed unless the user has all of the required “get” permissions for that entity).

Record (entity) name in Lists app

Required “get” content permissions

Record (entity) name in Lists app

Required “get” content permissions

1

Instances

  • inventory-storage.instances.item.get,

  • inventory-storage.instance-types.collection.get,

  • inventory-storage.contributor-name-types.collection.get,

  • inventory-storage.contributor-types.collection.get,

  • inventory-storage.classification-types.collection.get,

  • inventory-storage.statistical-code-types.collection.get,

  • inventory-storage.instance-statuses.collection.get,

  • inventory-storage.instance-date-types.collection.get,

  • inventory-storage.statistical-codes.collection.get

2

Holdings

  • inventory-storage.locations.collection.get,

  • inventory-storage.holdings.item.get,

  • inventory-storage.location-units.libraries.collection.get,

  • inventory-storage.statistical-code-types.collection.get,

  • inventory-storage.statistical-codes.collection.get

3

Items

  • inventory-storage.locations.collection.get,

  • inventory-storage.instances.item.get,

  • inventory-storage.holdings.item.get,

  • inventory-storage.material-types.collection.get,

  • inventory-storage.contributor-name-types.collection.get,

  • inventory-storage.items.item.get,

  • inventory-storage.location-units.libraries.collection.get,

  • inventory-storage.contributor-types.collection.get,

  • inventory-storage.classification-types.collection.get,

  • inventory-storage.statistical-code-types.collection.get,

  • inventory-storage.call-number-types.collection.get,

  • inventory-storage.statistical-codes.collection.get

4

Loans

  • inventory-storage.instances.item.get,

  • inventory-storage.holdings.item.get,

  • circulation.loans.collection.get,

  • inventory-storage.material-types.collection.get,

  • inventory-storage.contributor-name-types.collection.get,

  • inventory-storage.items.item.get,

  • users.item.get,

  • users.collection.get,

  • inventory-storage.contributor-types.collection.get,

  • circulation-storage.loan-policies.collection.get,

  • inventory-storage.service-points.collection.get,

  • inventory-storage.classification-types.collection.get,

  • inventory-storage.statistical-code-types.collection.get,

  • usergroups.collection.get,

  • inventory-storage.statistical-codes.collection.get

5

Users

  • users.collection.get,

  • users.item.get,

  • usergroups.collection.get

6

Organizations

  • organizations.organizations.collection.get,

  • organizations-storage.organization-types.collection.get,

  • acquisitions-units.units.collection.get,

  • organizations-storage.categories.collection.get

7

Purchase order lines

  • finance.exchange-rate.item.get,

  • users.collection.get,

  • organizations.organizations.collection.get,

  • configuration.entries.collection.get,

  • organizations-storage.organization-types.collection.get,

  • orders.po-lines.item.get,

  • acquisitions-units.units.collection.get,

  • organizations-storage.categories.collection.get,

  • orders.item.get,

  • users.item.get

Determining access in Lists app

As of the Ramsons release, access will be limited to record types in Lists app (and FQM) based on the assigned permission(s) the user already has to view record types in FOLIO

Lists permissions.png
App permissions + Content permissions determine what access a user has in Lists

Changes for end-users (as of Ramsons release):

  1. Limit entity/record types when creating a list based on content permissions

  2. Limit viewing/filtering of lists on the lists landing page based on content permissions

  3. Error/messaging if you don't have permissions for any entity-type

UX Workflows based on content permissions

Scenario

Lists app results (landing page) - Expected outcome

Lists app detail record - Expected outcome

Scenario

Lists app results (landing page) - Expected outcome

Lists app detail record - Expected outcome

1

The user has all content permissions assigned AND has Lists app permissions assigned

 

example 1: the user has all “get” content permissions for all record types - Instances, Holdings, Items, Loans, Users, Organizations, Purchase order lines

  • Record type filter - Show all entity types

  • Visibility filter - show shared and private lists (of that user): for all entity types

  • Status filter - show active and inactive lists: for all entity types

example 1: the user has access to lists and filters for all types - Instances, Holdings, Items, Loans, Users, Organizations, Purchase order lines

Note: the user’s Lists app permissions might restrict some of these functions

  • Create a new list - Record type selection - All entity types are displayed

  • Edit a list: no change

  • Export a list: no change

  • Duplicate a list: no change

  • Delete a list: no change

  • Refresh a list: no change

  • Show columns: no change

example 1: the user can create a list for any record type - Instances, Holdings, Items, Loans, Users, Organizations, Purchase order lines

2

The user does not have all content permissions for each record type AND has Lists app permissions assigned

 

example 2: the user has all “get” content permissions for Instances, Holdings, and Items, but does not have permissions for any other record type.

  • Record type filter - only show entity types the user has all “get” content permissions for

  • Visibility filter - show shared and private lists (of that user) for: only the entity types the user has all “get” content permissions for

  • Status filter - show active and inactive lists for: only the entity types the user has all “get” content permissions for

 

example 2: The user can only see Instance, Holdings, and Item lists and filters.

  • Create a new list - Record type selection - only show entity types the user has all “get” content permissions for

  • Edit a list: no change

  • Export a list: no change

  • Duplicate a list: no change

  • Delete a list: no change

  • Refresh a list: no change

  • Show columns: no change

 

example 2: the user can only create new lists for Instance, Holdings, or Item record types

3

The user has no content “get” permissions assigned AND has a Lists app permission assigned

The Lists app icon appears but the user cannot take any action within the app.

In place of the first pane, the following message is displayed in the center of the page:

User does not have required permissions. Please contact your system administrator for help.

  • The user cannot take any action on a detail record

  • In the event the user tries to navigate directly to the URL for a list (they have it saved, or someone sends it to them) - the user gets an error message “You don’t have access to this app/record”

4

The user has all content “get” type permissions assigned for at least one record type BUT has no Lists app permissions assigned

The user cannot access the Lists app

The user cannot access the Lists app