Custom Permissions¶
MetalSoft’s ABAC (Attribute-Based Access control) system allows complex, custom rules based on CASL conditions, custom fields etc.
To Create a custom permission:
Go to Users & Permissions > Permissions
Add Permission
Fill in the details of the permission as per below
Click add permission
Go to the Roles tab
Add edit on an existing role or Add Custom Role
Check the checkbox next to the newly created permission at the bottom.
Conditions¶
The Conditions uses the CASL convention. Reffer to this resource for more details: Conditions in Depth
Fields¶
The Fields list for a particular Subject can be determined from the swagger documentation https://<your-env-hostname/api/v2/swagger
and scrolling at the bottom of the page. The fields included in the list will be the only ones allowed. If none is entered, all fields can be changed by the User (Principal) operating on the Subject.
Note that there is no validation for the Fields at the moment. They need to match the object’s fields or it will not have an effect.