ACL (Access Control Lists)

ACL Introduction

Access to the data stored in services is controlled using Access Control Lists. These ACLs were introduced in release 7.23.07 (July 2023) with a basic set. More ACLs were added in the following releases, most notably version 7.23.11 (November 2023).

ACL's are configured per scope. Examples of scopes are notes, documents and parts. ACL's can now be defined for granting access to compare versions, custom actors, document, document part, quality note, quality note type, review cycle log and review cycle type. For these scopes, ACL records are added with the upgrade script en these ACL records mimic the old mechanism.

Rights to Scopes are given to Personas. Personas are the SSP Roles and (custom) actors, as defined per template. Scopes allow to finetune the access rights, and in some cases extended detailing can be done using Javascript.

Access ACL of a template

The ACLs can be found under the tab 'ACL'. the table shows all current ACLs, the list can be filtered. New ACLs can be added by using the button 'ADD BY SCOPE' at the bottom.

The next page lists all available scopes and their options.