...
The JobScheduler/ JOC Cockpit architecture allows individual JobScheduler Masters and/or Agents to be used for individual clients, and is described in JOC Cockpit - Architecture article. The authentication and authorization introduced with the JOC Cockpit also allows an extremely flexible set of permissions to be configured for Users.
- Users are allocated one or more roles, with each role containing a set of permissions that specify the operations that can be carried out within the role.
- Roles can be configured for JobScheduler Masters
- In addition, the objects within a JobScheduler Master configuration that these operations can be carried out on can also be configured for each role. For example, one role may be allowed to view the status of Jobs and Orders in Folders A and B, another role may be allowed to change the state and modify the run times of the Jobs and Orders in all the Folders. This approach may be contrasted with other systems that allocate rights and permissions purely according to resources such as files or folders.
The use of role-based permissions brings a number of significant advantages:
...
Note that this view shows the permissions for the operations that can be carried out within the Roles allocated to the user. The folders permissions allocated to these Roles can be easily viewed in the folder trees in the Job Chains and Jobs views.
Editing Role Permissions
A graphical editor is available for modifying role permissions.
The editor is available for
References
- For detailed information how to configure permissions see the Authentication and Authorization - Configuration article.
- For a complete list of permissions see the Authentication and Authorization - Permissions for the JOC Cockpit Web Service article.
...