To facilitate the role-based access, you should create a list grouping the IT entities in Projects and Partner-specific entities in Networks. For example, you create two custom roles with access to projects:
Custom Role | Base Role | Project Access | Network Access |
---|---|---|---|
User 1 | IT User | Project_123 | All Networks |
User 2 | Business User | Project_abc | Network A & B |
While defining the custom roles you will also give access to the objects listed in the Project and Networks. Permissions to the IT User’s entities such as Template, Objects created in Developer Studio, Process Flows, Mapping, etc. are managed through projects.
Object Type | Project |
---|---|
Accounts, Templates, Process Flows, Mappings | Project_123 |
Web Forms, Layouts (Schema), Various Events (created in Developer Studio) | Project_123 |
Permissions to the Partner Objects such as Transaction and Partners are managed through Networks. You can control access to networks thru complete Network access or Network list (view-only access to these networks).
Object Type | Network |
---|---|
Transaction | Network A |
Partner A | Network A & B |