Roles and Access Levels

Each user of the Booking Service has an access level. When not logged in the access level is Public.

Access levels are:

  • Public (not logged in)
  • Member (logged in via the Member Login screen)
  • Committee (lowest level of login via the Admin Login screen)
  • Membership
  • Staff
  • Administrator

All access levels are hierarchical in that higher levels can do everything a lower level can do, and more. An exception to this is provided so you can add or subtract roles from individual admin logins.

The names of the admin access levels need not imply their functional use, because you can configure access according to your needs. The main thing to remember is that the levels are hierarchical and the list above starts with the lowest level of access and ends with the highest level.

The old software framework used access levels to directly set permission to use any page on the site. The new software uses Roles to do this instead, allowing a finer-grained approach to controlling access.

To edit a Role go to admin menu → admin → roles. You can set the access level that has the role. All higher access levels are also given that role.

If a role exists in the software but doesn’t appear in the roles table, then no admin level has that role (but some automated functions have all roles, e.g. scheduled email reminders, automatic cancellation of TENTATIVE bookings etc). This may change so that a role will appear in the table but marked as not having any access level.

Roles are annotated with text describing their function, so you can see what each role gives access to. A role can allow updating, or just reading.

A role called PUBLIC exists and should not be modified. This Role is used to give public access to certain functions and data dynamically.

On each role you can select any admin login and add or subtract this role from that login. This allows you to customise the access of an individual admin login.

API keys

API keys allow access to the Booking Service API without using a login. (more…)

Read more ...

Administrator Logins

Any administrator with the ROLES role can create, edit and delete any admin login. (more…)

Read more ...