Dear Team,
Presentation by Adhyan remind me a critical issue that was faced by SAP
- ERP. on managing user's permission.... "Please apologies for my
ignorance"
I wonder to know how it is happen in Mifos/Fineract
Best Practices is as follows.
Users - e.g. Ed, Sendoro, Emmanuel etc
Groups - in organization, you may have group of people who are supposed
to play same roles.
Roles - e.g. Cashier, Credit Officer, document verifier etc.
Permissions - e.g can Approve/reject loans, create loans etc...
Best Practices Scanerios.
-------------------------------
Permissions are assigned to roles and never directly to the users/groups
Roles - Assigned to Groups and never directly to users, this means
whenever a user is removed from a group automatically he has missed all
privileges/permissions of the groups and whenever user get to a group
s/he automatically get all roles and privileges in that group
Groups contains users:
Advantages
-it mitigate the risk on leaving a certain privileges to user even if it
was supposed to have been removed et.
-it maintain scalability and integrity of this key and probably risk
area...
Is this how it is being done now? Anyone can direct me to documentation
of this module?
Thanks
Sendoro
