Skip to main content
If you are a Planview customer, sign in to enable additional content.
Planview Customer Success Center

Assigning Type ACLs to the Human Resources (HR) Troux Groups

To meet the HR solution requirements, assign the following component and relationship Type ACLs. The tables below indicate the component and relationship roles, respectively, that must be enforced for each user role and each type used in the example HR solution.

The following roles are mapped in the tables below:

  • Owner : Can create, delete, and update instances.

  • Reader : Can only view properties.

  • Contributor : Can update property values, but cannot create or delete instances.

User Role

Internal Organization

Person

HR Portal - Contributors

Component Reader

Component Owner

HR Portal - Admins

Component Owner

Component Owner

HR Portal - Employees

Component Reader

Component Contributor

User Role

Organization has manager Person

Organization Component supervises Organization Component

HR Portal - Contributors

Relationship Owner

Relationship Owner

HR Portal - Admins

Relationship Owner

Relationship Owner

HR Portal - Employees

Relationship Reader

Relationship Reader

Note

For more information about the HR solution, see Human Resources (HR) Solution Development Workflow.

Assigning Type ACLs in Troux Admin

To assign Type ACLs:

  1. Select the Data & Types tab in Troux Admin.

  2. Use the Search Types pane to search for the relevant component type.

  3. Perform the following actions for each component type used in the HR solution:

    1. Locate and select the component type.

    2. Scroll down to the Security section for that component type and click the Manage Access List ... link.

    3. Select the This type defines its own access list option, if it is not already selected.

    4. Select the following Troux Groups from the Add a group drop-down menu to add them to the access list:

      • HR Portal - Contributors

      • HR Portal - Admins

      • HR Portal - Employees

    5. Select the appropriate check boxes to establish the component roles that each Troux group will have on the component type, as indicated by the table in the beginning of the topic.

    6. Click Save .

  4. After assigning the component roles, search for the relevant relationship types and assign relationship roles.

  5. Perform the following actions for each relationship type used in the HR solution:

    1. Locate and select the relationship type.

    2. Scroll down to the Security section for that relationship type and click the Manage Access List ... link.

    3. Select the This type defines its own access list option, if it is not already selected.

    4. Select the following Troux Groups from the Add a group drop-down menu to add them to the access list:

      • HR Portal - Contributors

      • HR Portal - Admins

      • HR Portal - Employees

    5. Select the appropriate check boxes to establish the relationship roles that each Troux group will have on the relationship type, as indicated by the table in the beginning of the topic.

    6. Click Save .

Assigning Type ACLs within an ACL Schema XML File

The ACL schema provides syntax to define Type ACLs for component, relationship, and property types. The following XML illustrates how Type ACLs are defined for the HR solution. Component and relationship types are specified in the XML by their UUIDs. To locate the UUID for a particular object type, browse Metamodel Types in Troux Admin.

<acl xmlns:xs="[1][2]http://www.w3.org/2001/XMLSchema-instance" xs:noNamespaceSchemaLocation="[3][4]http://www.troux.com/schemas/com/tro.../ACLConfig.xsd">

 

<componentType>

<acldef uuid="CompType_ITG:Internal_Organization_UUID">

<trouxGroup name="HR Portal - Contributors" trouxRole="Component Reader"/>

<trouxGroup name="HR Portal - Admins" trouxRole="Component Owner"/>

<trouxGroup name="HR Portal - Employees" trouxRole="Component Reader"/>

</acldef>

<acldef uuid="CompType_TRM:Person_UUID">

<trouxGroup name="HR Portal - Contributors" trouxRole="Component Owner"/>

<trouxGroup name="HR Portal - Admins" trouxRole="Component Owner"/>

<trouxGroup name="HR Portal - Employees" trouxRole="Component Contributor"/>

</acldef>

</componentType>

 

<relationshipType>

<acldef uuid="Reltype_organization_has_manager_is_manager_of_person_UUID">

<trouxGroup name="HR Portal - Contributors" trouxRole="Relationship Owner"/>

<trouxGroup name="HR Portal - Admins" trouxRole="Relationship Owner"/>

<trouxGroup name="HR Portal - Employees" trouxRole="Relationship Reader"/>

</acldef>

<acldef uuid="Reltype_organization_component_supervises_is_supervised_by_organization_component_UUID">

<trouxGroup name="HR Portal - Contributors" trouxRole="Relationship Owner"/>

<trouxGroup name="HR Portal - Admins" trouxRole="Relationship Owner"/>

<trouxGroup name="HR Portal - Employees" trouxRole="Relationship Reader"/>

</acldef>

 

<!--The HR Portal does not require property type ACLs.

<propertyType>

<acldef uuid=" UUID of property type ">

<trouxGroup name=" Troux Group A " trouxRole=" Property Writer or Property Reader "/>

...

</acldef>

</propertyType>

-->

 

</acl>

ACL schema files are imported into the TrouxSource repository via the trouxAdmin utility, located within < Troux_Install >\utils directory. To import the ACL schema file, execute the following command from the \utils directory:

trouxAdmin import-ACL

Follow the remaining prompts to complete the import. Refer to the Installation and Deployment Guide for more information about using the utility.

Please sign in to see this content.