User Groups
User groupsUser groupA container that coalesces users so security, profiles and layouts can be managed and shared for the whole group at once. let you manage many users as a single entity instead of one by one. A user can belong to several groups, and the administrator decides which groups each user joins.
Suppose an organization wants to group users by region, like this:
Users in a group usually share common traits, so they tend to need the same privileges and data.
Rather than assigning filter valuesFilter valueA single value inside a filter group, used as a qualification on a resource or a requirement on a task., categoriesCategoryA visual indicator (a color) applied to appointments to classify or label them. and time markersTime markerA visual indicator on an appointment, separate from its category, used to flag a status or condition at a point in time. to each user individually, assign them to a user group. When a user joins a group, that group's specifications are automatically allocated to the user. These allocations accumulate across groups. In the example above, "User 1" belongs to both groups, so this user can do everything members of group 1 and group 2 can do, such as planning tasks and resources in both the EMEA and LATAM regions.
Sharing dataโ
Profiles and layouts can be shared in two ways: with everybody (public) or with a user group.
Every member of a group has access to the profiles and layouts shared with that group. Remove a user from the group and that access is gone.
Securityโ
Rolesโ
Managing similar users through user groups also simplifies security, because you can assign rolesUser roleA named bundle of user actions assigned to users and user groups. Permissions flow through roles, never directly to a user. to a user group. Every member of the group is granted the user actionsUser actionA single protected capability, such as 'edit appointment', that a role can grant. The building block of role-based access control. assigned to it, and loses them as soon as they leave the group. If the user was also assigned to that role directly (or through another group), they may notice no difference at all.
Data-driven securityโ
You can also apply data-protected security by assigning filter values, categories and time markers to user groups, which are then compared against tasks and resources. For more about data-driven security, see Data-driven security.