Documentation

User roles and Permissions

CleverMaps is a multitenant cloud application, which means that a single instance of the application serves multiple users at the same time. Registered users have access to various projects. There can be more than one user in a project, and one user can have access to one or more projects. In the scope of a project, users can also have different user roles which describes what they are allowed to do with the project. More about this relationship in CleverMaps Platform.

User roles

There are 7 user roles in CleverMaps - Viewer, View Creator, Metadata Editor, Data Editor, Load Data, Location API consumer and Admin and 36 permissions assigned to them.

User role

Description

Viewer

is the lowest user role available. After accepting an invitation to a project, you become a Viewer. A Viewer can open map views in a project and filter data.

View Creator

has all the permissions of Viewer role and, in addition, it is able to create/delete own project metadata of following types: view, dashboard, marker selector, indicator drill.

NOTE: After creating views by View Creator role, these (personal saved views) are visible only to creator and are displayed in alphabetical order at the end of view list in project page in UI. In order for personal saved views to be visible for all users these views must be included in defaultViews list of ProjectSettings metadata object. Managing of ProjectSettings metadata object can be done only by user with Metadata Editor or Admin role. See Project settings for more details on defaultViews list.

Metadata Editor

has all the permissions of Viewer role and, in addition, it is able to create/update/delete all project metadata (except for DataPermissions metadata type), and validate the data.

Data Editor

has all the permissions of View Creator and Load Data role.

Admin

have all the permissions of the lower user roles, plus you are able to load/dump project data, invite other users into the project, and manage existing memberships. User management interface is available in the application by hovering the Account icon on the bottom left of the Project page, and selecting User management.

Load Data

is able to load and validate the project data only. Users with this role may be used for automated data upload, as an account used in a Shell script. This role is not part of the role hierarchy described above.

Location API Consumer

Users with this role cannot access Studio views and underlying raw data of the project. Location API Consumer role is used for projects where data is managed by a data provider.

Location API Consumers access only aggregated data through bulkPointQuery jobs endpoint.

Usage of the bulkPointQuery endpoint is logged and is measured by number of queries and metrics. Usage of the endpoint may be subject to charges by data provider.

Permissions

Category

Permission

Viewer

View Creator

Metadata Editor

Data Editor

Admin

Load Data

Location API Consumer

project permissions

access project

check mark

check mark

check mark

check mark

check mark



get project detail

check mark

check mark

check mark

check mark

check mark

check mark

check mark

delete a project





check mark



update a project





check mark



project membership

add project membership





check mark



list project membership





check mark



update project membership





check mark



delete project membership





check mark



project invitations

invite to project





check mark



list project invitations





check mark



update project invitation





check mark



project data

load project data




check mark

check mark

check mark


dump project data





check mark



validate project data



check mark

check mark

check mark

check mark


execute bulk points query

check mark

check mark

check mark

check mark

check mark


check mark

execute dwh query

check mark

check mark

check mark

check mark

check mark



project metadata

create view


check mark

check mark


check mark



delete own view


check mark

check mark


check mark



create dashboard


check mark

check mark


check mark



delete own dashboard


check mark

check mark


check mark



create marker selector


check mark

check mark


check mark



delete own marker selector


check mark

check mark


check mark



create indicator drill


check mark

check mark


check mark



delete own indicator drill


check mark

check mark


check mark



create all metadata (except for data permissions)



check mark


check mark



update all metadata (except for data permissions)



check mark


check mark



delete all metadata (except for data permissions)



check mark


check mark



update data permissions





check mark



project audit

get audit log





check mark



Stories

view stories

check mark

check mark

check mark

check mark

check mark



add/edit/remove stories


check mark

check mark

check mark

check mark



Studio

export data from a project

check mark

check mark

check mark

check mark

check mark



show data model



check mark


check mark



show JSON metadata

check mark

check mark

check mark

check mark

check mark



share a link with another user

check mark

check mark

check mark

check mark

check mark



save Studio state as personal view


check mark

check mark


check mark



save Studio state as project view



check mark


check mark