Custom Permissions

MetalSoft’s ABAC (Attribute-Based Access control) system allows complex, custom rules based on CASL conditions, custom fields etc.

To Create a custom permission:

1. Go to Users & Permissions > Permissions

2. Add Permission

3. Fill in the details of the permission as per below

4. Click add permission

5. Go to the Roles tab

6. Add edit on an existing role or Add Custom Role

7. Check the checkbox next to the newly created permission at the bottom.

Conditions

The Conditions uses the CASL convention. Reffer to this resource for more details: Conditions in Depth

Fields

The Fields list for a particular Subject can be determined from the swagger documentation https://<your-env-hostname/api/v2/swagger and scrolling at the bottom of the page. The fields included in the list will be the only ones allowed. If none is entered, all fields can be changed by the User (Principal) operating on the Subject.

Note that there is no validation for the Fields at the moment. They need to match the object’s fields or it will not have an effect.