Managing Permissions

Introduction
This page covers the two major permissions topics related to a OSF for Drupal instance: The dataset permissions have to do with accessing and managing the data. The modules permissions have to be with accessing the OSF for Drupal tool into the web portal.
 * 1) Dataset permissions
 * 2) OSF for Drupal modules permissions

How dataset permissions works
In OSF, all the datasets are governed by a series of access permissions. What these access permissions specify are the CRUD permissions for every group of users that exists in the system.

In OSF for Drupal, everything dataset does have,  ,  and  permissions attached to all defined Drupal Roles. This means that all the users that have a specific role will inherit the CRUD permissions associated to that role.

By example, if the  does define full CRUD permissions to the   role, then it means that all the users that have this role will have full CRUD permissions on that   dataset.

Managing datasets permissions
To change the permissions of a dataset, you have to click the  top menu item.

Then select the dataset for which you want to change the permissions and click the  at the right of the   link. Then click on the  link. Then you will get redirected to the section of the Drupal Permissions page where you will be able to configure the dataset permissions. Every dataset that has been registered to a Drupal instance will appears in the global Drupal Permissions page. Each of the dataset will be highlighted using a different color. It is very important to understand the layout of that page to be able to properly configure the permissions of a dataset.

In the  column, we have each colored dataset outlined. We have their, the   where they are indexed, and the the   (one per row):  ,  ,   and.

Then you will have one column per Drupal Role. In a default OSF for Drupal instance, you have the following roles defined: Let's take a few examples to understand how the permissions should be configured.
 * This is the guest user. Everybody that access the Drupal portal without being logged in, will be the Anonymous user
 * This is a Drupal authenticated and logged-in user
 * This is a system administrator. Administrator users always have full CRUD permissions on all registered datasets
 * This is a Drupal authenticated and logged-in user
 * This is a system administrator. Administrator users always have full CRUD permissions on all registered datasets
 * This is a system administrator. Administrator users always have full CRUD permissions on all registered datasets
 * You want all the guest users of your Drupal portal to be able to read information about a dataset
 * What will be required is that the  row be checked for the   column. Then you have to make sure that the ,   and   checkboxes are unchecked.
 * You don't want the guest users of your Drupal portal to be able to read information about a dataset
 * What will be required is that you make sure that the  row is unchecked for that dataset.
 * You want the  users to be able to Create, Read and Update content, but not to delete it
 * What will be required is that the,   and   rows be checked for the   column. Then you have to make sure that the   checkboxe is unchecked.

OSF for Drupal modules permissions
These are all the Drupal modules permissions that are related to OSF for Drupal. In this section, we are describing the impact of each of these configurable permission.


 * 1) OSF Entities Connector
 * 2) Specifies if the role can create, modify and delete resource type entities
 * 3) Specifies if the role can view individual resource pages
 * 4) Specifies if the role can edit individual resource pages. This will show the 'Edit' tab on the resource pages
 * 5) Specifies if the role can export individual resource pages in different exportation formats. This will show the 'Export' tab on the resource pages
 * 6) Specifies if the role can can edit ontologies resources (classes and properties)
 * 7) Specifies if the role can delete an individual resource page. This will show the 'Delete' tab on the resource pages
 * 8) Specifies if the role can create, modify and delete resources
 * 9) This displays the   link to add a new resource in the resources tab
 * 10) Specifies if the role can view the revisions tab for the resources
 * 11) Specifies if the role can revert revisions of a resource
 * 12) Specifies if the role can delete revisions of a resource
 * 13) Specifies if the role can unpublish revisions of a resource
 * 14) Specifies if the role can compare resource revisions
 * 15) OSF Export
 * 16) Specifies if the role can access the OSF Export module
 * 17) Specifies if the role can administer the OSF Export module settings
 * 18) OSF Import
 * 19) Specifies if the role can access the OSF Import module
 * 20) Specifies if the role can administer the OSF Import module settings
 * 21) OSF Ontology
 * 22) Specifies if the role can access the OSF Ontology module
 * 23) Specifies if the role can administer the OSF Ontology module settings
 * 24) OSF Query Builder
 * 25) Specifies if the role can access the OSF Query Builder module
 * 26) OSF Search API Connector
 * 27) Specifies if the role can access the OSF SearchAPI module
 * 28) OSF for Drupal Core
 * 29) Specifies if the role can access the OSF Core module
 * 30) Specifies if the role can administer the OSF Core module settings
 * 31) Specifies if the role can access the OSF for Drupal proxy.
 * 32) The management of this permission is quite important since all the JavaScript applications that uses Ajax queries to the OSF Web Services are using this proxy.
 * 33) OSF for Drupal Search Profiles
 * 34) Specifies if the role can administer the OSF SearchProfiles module settings
 * 35) OSF for Drupal config
 * 36) Specifies if the role can administer the OSF Configure module settings
 * 1) Specifies if the role can administer the OSF Import module settings
 * 2) OSF Ontology
 * 3) Specifies if the role can access the OSF Ontology module
 * 4) Specifies if the role can administer the OSF Ontology module settings
 * 5) OSF Query Builder
 * 6) Specifies if the role can access the OSF Query Builder module
 * 7) OSF Search API Connector
 * 8) Specifies if the role can access the OSF SearchAPI module
 * 9) OSF for Drupal Core
 * 10) Specifies if the role can access the OSF Core module
 * 11) Specifies if the role can administer the OSF Core module settings
 * 12) Specifies if the role can access the OSF for Drupal proxy.
 * 13) The management of this permission is quite important since all the JavaScript applications that uses Ajax queries to the OSF Web Services are using this proxy.
 * 14) OSF for Drupal Search Profiles
 * 15) Specifies if the role can administer the OSF SearchProfiles module settings
 * 16) OSF for Drupal config
 * 17) Specifies if the role can administer the OSF Configure module settings
 * 1) Specifies if the role can access the OSF for Drupal proxy.
 * 2) The management of this permission is quite important since all the JavaScript applications that uses Ajax queries to the OSF Web Services are using this proxy.
 * 3) OSF for Drupal Search Profiles
 * 4) Specifies if the role can administer the OSF SearchProfiles module settings
 * 5) OSF for Drupal config
 * 6) Specifies if the role can administer the OSF Configure module settings
 * 1) OSF for Drupal config
 * 2) Specifies if the role can administer the OSF Configure module settings
 * 1) Specifies if the role can administer the OSF Configure module settings