Skip to main content
Windward

Javelin Permissions

Overview

Javelin has two roles, User and Admin, and offers Groups that users can be added to. Files and Folders can be restricted to certain users or groups based on permissions set for a particular file or folder.

 

In addition to Javelin's User and Group Management System, Javelin supports Active Directory and LDAP Integration. Javelin does not support a mixed mode and forces Administrators to either integrate with Active Directory or an LDAP service, or use Javelin’s User and Group management system.

 

Active Directory and LDAP Integration

You have the option of integrating an Active Directory or LDAP list of Users and Groups into Javelin.

 

Javelin does not support a mixed mode and forces Administrators to either integrate with Active Directory or an LDAP service, or use Javelin’s User and Group management system.

 

Javelin always communicates with the Active Directory or LDAP server upon login for determining the groups an individual is in.

  • Javelin does not copy the group members across into a local copy that has to be synced. Active Directory or LDAP integration is used only to synchronize Users and Groups in Javelin while File and Folder Permissions are still handled on the Javelin level.
  • When active directory is in use, users cannot be added or removed.

 

Javelin’s User and Group Management System

There are two user roles – Admin and User. Administrators have access to global settings which allow them to set default Permissions on Files and Folders uploaded to or created in Javelin.

All permissions are set at the level of File or Folder. However, if an individual has a role of Admin, s/he will have access to all files and folders regardless of the level of permissions that were assigned for a folder or file.

 

Groups

Users can belong to multiple Groups, and Groups can belong to other Groups. This is true whether using Active Directory or not. To create a new group or edit an existing group, go to the Groups Tab under Admin. 

 

File and Folder Permissions

Permissions function at the File and Folder level, and are structured as follows:

Permission Name

Function

Read

User/Group can read and download the Template, POD File, or Report or any Template, POD File, or Report in the folder.

Write

User/Group can create, update, and delete the Template, POD File, or Report or any Template, POD File, or Report in the folder.

Run

User/Group can run individual Templates or Templates in the designated folder.

Schedule

User/Group can schedule individual Templates or Templates in the designated folder for generation.

Read Report

User/Group can read and download the generated Report from a given Template or Templates in the designated folder. (For use in situations where an employee or user should not see the content of a generated report).

 

  • Administrators have access to global settings which allow them to set default Permissions on Files and Folders uploaded to or created in Javelin.
  • Folder Permissions in Javelin can be adjusted for Users and Groups. 
  • Individual User Permissions supersede Group level Permissions for any Groups they are in. For example, if an individual User is given Permission to a specific folder, but a Group s/he is in does not have access to that folder, their User level permission grants them access.

 

Adding or Editing Permissions

To edit the permissions of a folder or file, go to the Home>Templates tab and click the tree button on the right under Actions.

 

A new window will pop up. This window contains an entry for the name of this folder along with the ability to select Users and Groups to Permission for the folder, as well as an option to allow all Users and Groups to view the folder (i.e. make the folder Public).

 

 

  • Private – Only people with permissions can access the folder.
  • Inherit from Folder – this is use the permissions of the parent folder
  • Member Search – search groups or users to add to the pane below.
  • Current Members – This pane shows any users or groups who are already part of the permissions. You can check certain users to remove them from the permissions for the file or folder.
    • NOTE: Each file or folder can only have one set of permissions which apply to all the users in the group.

  • Read, Write, Run, Schedule, Read Generated Report – check any combination of permissions to grant access to the selected users and groups.

 

Note: Only individuals with preexisting Permission to access the File or Folder are capable of Editing File or Folder Permissions – this can be Administrators, Users, and/or Groups.

 

Setting different permissions for the same File or Folder

You can mix and match permissions per user. To do this, select the users(s) or groups(s) for your first set of permissions and save. Then select another set of users and groups and check the permissions you want them to have, then save.