Roles control access to features and capabilities in applications and components. After access has been granted to a role, all the groups or users assigned to the role are granted the access. 


Creating a User Role

  1. On the top right, navigate to 
    cog
     → Application Studio → ServiceJourney
  2. Once inside Application Studio, navigate to Security → Roles
  3. Click on New Role button
  4. Fill out the appropriate fields
  5. Click Save
  6. Navigate to Deployment Management → Deploy and deploy the solution


Managing the list of Groups or Users assigned to a Role

  1. On the top right, navigate to 
    cog
     → Manage Users
  2. Navigate to User Management → Roles
  3. Click the hyperlink of the role whose membership you want to manage
  4. Click on the Role Groups tab or the Role Users tab and then click Edit
  5. Move the appropriate groups/users between the two boxes as needed
  6. Click Save

Users need to log out and log back in for these changes to take effect

Base Roles in ServiceJourney

The following roles are part of the standard installation of ServiceJourney

RoleDescription
Platform Level
System: Allow App Studio

This role allows the user to open the Application Studio where he can configure solution components. Basically, it's a combination of "Allow Solution Design" and "Allow Environment Administration" roles.

This role allows to change the solution resources files, which are part of solution configuration. This role must be allowed only for the user who has the right to change the configuration.

System: Allow Company Setup
This role grants privileges to manage all Company settings including Security Settings. This role gives access to all AppBase API used in the "Company Setup" section. More details - KB2019122300 AppBase Security Roles Granularity has been Improved
System: Allow Environment Administration
This role grants System role, that allows access to the configuration of capture channels, scheduled tasks, and other runtime components for the corresponding environment. More details - KB2020121500 Security Roles Changes
System: Allow My Workspace
This role provides access to the AppBase UI section that allows a user to manage some of its own settings or change their password. This role is required for the user to be able to open the AppBase home page after login.
System: Allow Solution Design

The features controlled by "Allow Solution Design" are equal to the "Allow App Studio" role, except features, allowed the "Allow Environment Administration" role. More details - KB2020121500 Security Roles Changes

"Allow Solution Design" role allows to do "Preview" only. To do "Execute SQL", "Confirm" or "Apply Changes" need to grant "Allow App Studio" or "Allow Environment Administration" or "Allow System Administration" roles.

System: Allow System Administration
This role provides access to the page "System Setup". Through System Setup, you can create and administer users, setup solutions and their respective environments, and manage resources.
System: Allow User Management

This role grants the privilege to manage users (Create/Delete/Update), to manage some of Authentication Configuration properties (mostly related to Active Directory synchronization, and to troubleshoot the synchronization errors). 

By allowing managing of user's groups/roles the role allows managing users privileges. More details - KB2019122300 AppBase Security Roles Granularity has been Improved

System: Solution AccessThis role allows to manage the access to resources/API like CMS resources, Solution components state, and others.
More detailed information about it can see in the article https://docs.appbase.com/display/AKB/KB2018061400+Solution+Access+Role+Feature
Solution Level
AdministratorAdministrator role provides access to all the DCM administration tools
Case WorkerThe Case Worker role provides access to all the DCM runtime features
DeveloperThe Developer role provides access to all the DCM configuration and administration tools.
DEXP_RootDEXP_Root (Export Root) role provides access to all the features of the DEXP component
LTR_RootLTR_Root (Letter Generation Root) role provides access to all the configuration features of the LTR component
ServiceJourney Level
Front Office User

User that interacts with customers

Back Office User

User that processes cases in the back office

SubmitterSimilar to a Front Office User except who only creates Cases