User Permissions (Privileges)

The top-level Administrator account will have all privileges activated by default. As shown in the following screenshot, this allows them to control most aspects of piDashboard and its users.

Each function in piDashboard is assigned a privilege, these are defined in blocks by User Type. For example, you could create an Administrator who’s only actual Administrator function is to Edit Users.

If a user doesn’t have the ‘Can Modify Layouts’ privilege and they view a Category that doesn’t have a default layout they will see the following error message.

With effect from the pi.2022-04-28 release of the dashboard, the ‘Can Change Own Password' and 'Can Change Own Theme' permissions are now linked to the 'Can Access Account' permission. Users need to be able to access the Account screen, accessed by selecting the user name under the 'More Options’ at the top-right of the dashboard, to change their password and theme.

If you tick either the ‘Can Change Own Password’ or ‘Can Change Own Theme’ permissions in Dashboard Configuration>Users, the ‘Can Access Account’ permission will be selected by default.

Similarly, if you untick the ‘Can Access Account’ permission, ‘Can Change Own Password’ and ‘Can Change Own Theme’ will also be unticked.

The ‘Can Access Account’ can be ticked without selecting ‘Can Access Account’ and ‘Can Change Own Password’ permissions. In this case, the user will only be able to amend their name and password.

With effect from the September 2022 release of the dashboard, a new privilege - ‘Can Manage User Access’ has been added to the system.

Previously, in order to manage User Access, an administrator had to have Edit Categories, Edit Users, and Edit Roles privileges. With the addition of the ‘Can Manage User Access’ privilege users can manage User Access, without being able to create dashboard users.

Migrations

  • All users with the combination of the above mentioned 3 privileges will be migrated to the new ‘Can Manage User Access’ privilege

  • The same migration will also apply to Roles that currently have the 3 above mentioned privilege

However, if you have a User who has multiple Roles and one Role gives the user the Edit Category privilege and another Role gives them the Edit Users and Roles privileges, the User and Roles would not be migrated to the ‘Can Manage User Access’ privilege automatically.