MobileTrack Nexus Documentation
Permission
Represents user permissions. These are used in a RoleDto,
which in turn is referred to in an RoleId.
By using the extension method HasPermission(RoleDto, PermissionValueMap) we can check if the user has the correct permissions to execute a task.
By using the extension method HasPermission(RoleDto, PermissionValueMap) we can check if the user has the correct permissions to execute a task.
Definition
Namespace: MobileTrack.Common.Enums
Assembly: MobileTrack.Common (in MobileTrack.Common.dll) Version: 0.7+ce90b2cf6b782b8d7b7fd47b3c546987c652c00f
Assembly: MobileTrack.Common (in MobileTrack.Common.dll) Version: 0.7+ce90b2cf6b782b8d7b7fd47b3c546987c652c00f
C#
public sealed class PermissionValueMap : AbstractValueMap<PermissionValueMap>- Inheritance
- Object AbstractValueMapPermissionValueMap PermissionValueMap
Example
C#
if (user.HasPermission(PermissionValueMap.ManageCompany))
{
PerformAction();
}Fields
| AssignActionFlows | Allows the user to assign existing action flow definitions to specific actions. If the user is a MobileTrack employee, it will allow them to assign these action flows to companies. |
| CreateAccounts | The user is allowed to create AccountDtos within the assigned scope (only applicable for EnvironmentDto scopes) |
| CreateActionFlows | Allows the user to create existing action flow definitions. |
| CreateAlertRules | The user is allowed to create AlertRuleDtos. |
| CreateAlertTypes | The user is allowed to create AlertTypeDtos. |
| CreateCustomPages | The user is allowed to create CustomPageDtos that belong to the assigned scope. |
| CreateDashboards | The user is allowed to create DashboardDtos that belong to the assigned scope. |
| CreateDevices | The user is allowed to create DeviceDtos that belong to the assigned scope. |
| CreateEnvironments | Whether the user is allowed to create EnvironmentDto within environments within the scope the role assignment is a part of. |
| CreateRoleAssignments | Allows a user to apply role assignments to users/API tokens to the scope the user is allowed to manage. |
| CreateTemplates | Allows the user to create existing Template definitions. |
| DeleteAccounts | The user is allowed to create AccountDtos within the assigned scope |
| DeleteActionFlows | Allows the user to delete existing action flow definitions. |
| DeleteAlertRules | The user is allowed to delete AlertRuleDtos. |
| DeleteAlertTypes | The user is allowed to delete AlertTypeDtos. |
| DeleteCustomPages | The user is allowed to create CustomPageDtos that belong to the assigned scope. |
| DeleteDashboards | The user is allowed to create DashboardDtos that belong to the assigned scope. |
| DeleteDevices | The user is allowed to create DeviceDtos that belong to the assigned scope. |
| DeleteEnvironments | Whether the user is allowed to delete EnvironmentDto within environments within the scope the role assignment is a part of. |
| DeleteMfa | The user is allowed to create MfaConnectionDtos within the assigned scope |
| DeleteRoleAssignments | Allows a user to apply role assignments to users/API tokens to the scope the user is allowed to manage. |
| DeleteTemplates | Allows the user to delete existing Template definitions. |
| FilesManagement | This user can manage the files owned by the company. This includes uploading, downloading, and deleting files. |
| ManageAccounts | The user is allowed to modify AccountDtos within the assigned scope |
| ManageActionFlows | Allows the user to edit existing action flow definitions. |
| ManageAlertRules | The user is allowed to modify AlertRuleDtos. |
| ManageAlertTypes | The user is allowed to modify AlertTypeDtos. |
| ManageAppConfigurations | The user is allowed to modify App configurations |
| ManageColorSelection | Allows the user to edit portal's color and theme. |
| ManageCompany | Allows the user to manage the settings of the CompanyDto. If the user is a MobileTrack employee, it allows the user to manage customer company root data or delete companies entirely. |
| ManageCustomPages | The user is allowed to modify CustomPageDtos that belong to the assigned scope. |
| ManageDashboards | The user is allowed to modify DashboardDtos that belong to the assigned scope. |
| ManageDevices | The user is allowed to modify DeviceDtos that belong to the assigned scope. |
| ManageEnvironments | Whether the user is allowed to manage the EnvironmentDto the environment (and child environments) within the scope the role assignment is a part of. |
| ManageIpAddresses | The user is allowed to manage (modify, delete, create) IP Addresses on the white/blacklist for their CompanyDto. For MobileTrack support staff, this allows them to modify the global white/blacklist as well. |
| ManageMapMarkers | Whether the user is allowed to manage the map markers of the CompanyDto. |
| ManageRoles | Whether the user is allowed to manage role definitions. For assignments, the user will be allowed to perform assignments to resources within the scope of the assignment, and only for accounts that are within scopes the user is allowed to manage through ManageAccounts |
| ManageTemplates | Allows the user to edit existing Template definitions. |
| MobileTrackSupport | MobileTrack Support users only |
| MobileTrackSupportCreateCompany | Mobile Track Support only; ability to create new CompanyDtos. |
| MobileTrackSupportDeleteCompany | Mobile Track Support only; ability to delete CompanyDtos. |
| MobileTrackSupportManageCompany | Mobile Track Support only; ability to manage a CompanyDtos. |
| PermanentlyDeleteItems | If the CompanyDto has the option to soft-delete items, this permission allows the AccountDto user to permanently delete items that haven't expired yet. |
| RevertDeletedItems | If the CompanyDto has the option to soft-delete items, this permission allows the AccountDto user to revert those deletions that haven't expired yet. |
| ReviewLogs | The user is allowed to view logs, whether for the whole company or items. MobileTrack users have this permission by default |
| RotateCompanyKey | Allows the user to rotate the Azure KeyVault key assigned to the company if a SAS token is leaked, or if the company needs to rotate keys for other reasons. |
| ViewAccounts | The user is allowed to view all AccountDtos within the assigned scope |
| ViewActionFlows | Allows the user to view action flows and see them in action. This goes for both viewing the definitions and assignments. |
| ViewAlertRules | The user is allowed to view all AlertRuleDtos. |
| ViewAlertTypes | The user is allowed to view all AlertTypeDtos. |
| ViewAppConfigurations | The user is allowed to view all App configurations |
| ViewColorSelection | Allows the user to view color and theme. |
| ViewDashboards | The user is allowed to view DashboardDtos that belong to the assigned scope. |
| ViewDevices | The user is allowed to view DeviceDtos that belong to the assigned scope. |
| ViewEnvironments | Whether the user has access to the environment. This permission is not set, but enabled by default when a scope is created for the role on an environment. |
| ViewIpAddresses | The user is allowed to view IP Addresses on the white/blacklist for their CompanyDto. For MobileTrack support staff, this allows them to view the global white/blacklist as well. |
| ViewMapMarkers | Whether the user is allowed to view the map markers of the CompanyDto. |
| ViewRoles | Whether the user is allowed to see the permission stack of a role definition. |
| ViewTemplates | Allows the user to view Templates and see them in action. This goes for both viewing the definitions and assignments. |
| ViewTrashBin | If the CompanyDto has the option to soft-delete items, this permission allows the AccountDto user to revert those deletions that haven't expired yet. |