Salesforce

Permission sets and system access

Printable View
« Go Back
Information
Permission sets and system access
000003990
Public
Product Selection
aiWare - aiWare
Article Details

A permission set is used to control a group of functional permissions that can be granted to a group of users for specific objects. The functional permissions that are enabled for a permission set determine what actions a user or group of users can perform on a given object.

For example, you can grant a permission set to a group of users for a temporal data object (TDO). The functional permissions that are enabled for the TDO object in the permission set determine how each user of the group interacts with the TDO.

Once a new user account is created for your organization, this user is added directly to the organization group. The permissions this new user account contains is based on the permission set granted to the organization group in the system access section of the Admin Center. This permission set determines what a user can do in the organization.

Permissions and default groups

For OLP, two initial organization-wide groups are created by default:

GroupDescriptionPermission setUser accounts
Org_Name administratorsGroups administrators of this organization and cannot be removed.aiWARE administratorUser accounts with administrator roles are added to the administrator group of the default organization.
Org_Name usersGroups all users of this organization, including administrators.aiWARE full access

All users are added to the users group, including admins.

View details of a permission set

View details about a permission set that has been granted to users.

View permission set details in the Admin Center UI

  1. To access the Admin Center utility, log in to your aiWARE administrative account. In the header bar, select Veritone and then Admin Center Admin Center.
  2. On the Admin Center's navigation, click Permissions Sets Groups. The list of permission sets that belong to the organization appears.

View permission set details via GraphQL

The details of a permission set can be viewed using the set's ID and the authPermissionSet GraphQL mutation.

An example mutation is:

query authPermissionSet{
  authPermissionSet(
    id:"5e3f8e68-336c-41e3-b915-de4b2669065e"){
   name
    id
    referencedACEs{
      id
      objectID
      isProtected
      permissionSet{
        id
      }
    }
  }
}

All authorized permission set details can be viewed using the owner organization's ID and the authPermissionSets GraphQL mutation.

An example mutation is:

query authPermissionSets{
  authPermissionSets( ownerOraganization: 1234){
    records{
      name
      id
      description
      referencedACEs{
        id
        isProtected
        objectID
        objectType
      }
    }
  }
}

Create a permission set in an org

You can create a permission set in an organization.

Create a permission set in the Admin Center UI

  1. To access the Admin Center utility, log in to your aiWARE administrative account. In the header bar, select Veritone and then Admin Center Admin Center.
  2. On the Admin Center's navigation, click Permissions Sets Groups.

    The list of permission sets that belong to the organization appears.

  3. Click + Create New.

    The Create New Permission Set panel appears.

  4. Follow the instructions on the wizard, and then click Save.

    A permission set is added to the permission sets list.

Create a permission set via GraphQL

Create a permission via the authPermissionSetCreate GraphQL mutation. An example mutation is:

mutation authPermissionSetCreate{
  authPermissionSetCreate(input: 
    {name: "test", 
      permissions: ADMIN_ACCESS,
      description: "test"
      }) {
    id
    name
  }
}

Edit details of a permission set

Admin users can view details about a permission set that has been granted to groups of users.

Edit permission set details in the Admin Center UI

  1. To access the Admin Center utility, log in to your aiWARE administrative account. In the header bar, select Veritone and then Admin Center Admin Center.
  2. On the Admin Center's navigation, click Permissions Sets Groups.

    The list of permission sets that belong to the organization appears.

  3. Select the permission set that you want to edit. The Organization permission set panel appears.
  4. On the Permissions tab, edit the permissions that you need, and then click Save Changes.

Edit permission set details via GraphQL

Edit permission set details via the authPermissionSetUpdate GraphQL mutation. An example mutation is:

mutation authPermissionSetUpdate{
  authPermissionSetUpdate(input: 
    { id: "4cc2d415-a95e-475e-91d2-5b83ddfcedeb"
      name: "test2", 
      }) {
    id
    name
  }
}

Assign a permission set to a group

Each user account that is created can perform certain functions inside of aiWARE. The functions that can be performed by each user depend on the permission set that is granted to the user via the group they belong to in the System Access section of the Admin Center utility.

Steps

  1. To access the Admin Center utility, log in to your aiWARE administrative account. In the header bar, select Veritone and then Admin Center Admin Center.
  2. On the Admin Center's navigation, click System Access.

    The list of the permission set associated with a group appears.

  3. Click Manage Permissions.

    The Permissions panel appears.

Assign a permission set to a file

If you need to grant permissions on a file to a group, associate the file to the group and the permission set to which the group will be granted.

Steps

  1. To access the Data Center utility, log in to your aiWARE administrative account. From the header bar, select Veritone and then Data Center Data Center.

  2. On the Data Center's list of files, on the file that you want, click More actions MoreVert> Permissions AddUser.

    The Permissions panel appears.

  3. On the Enter names of groups box, type at least three characters of a group's name. You can add more than one group.

  4. From the Unlabeled box, choose a permission set, and then click Send.

    The Permissions panel appears. The group and the permission set are now associated with the file.

  5. Click Done.

Assign a permission set to a folder

If you need to grant permissions on a folder to a group, associate the folder to the group and the permission set that the group will be granted.

Steps

  1. To access the Data Center utility, log in to your aiWARE administrative account. From the header bar, select Veritone and then Data Center Data Center .
  2. On the Data Center's list of folders, on the folder that you want, click More actions MoreVert> Permissions AddUser.

    The Permissions panel appears.

  3. On the Enter names of groups box, type at least three characters of a group's name. You can add more than one group.
  4. From the Unlabeled box, choose a permission set, and then click Save.

    The Permissions panel appears and displays an avatar with the group and the permission set associated with the folder.

  5. Click Done.

Delete a permission set

You can delete a permission set that has been previously set.

Delete permission sets in the Admin Center UI

  1. To access the Admin Center utility, log in to your aiWARE administrative account. In the header bar, select Veritone and then Admin Center Admin Center.
  2. On the Admin Center's navigation, click System Access.

    The list of the permission set associated with a group appears.

  3. Click Delete group, and then confirm the deletion.

    The group is deleted.

  4. On the Settings tab, click Delete group, and then confirm the deletion.

    The group is deleted.

Delete permission sets via GraphQL

Delete permission sets via the authPermissionSetDelete GraphQL mutation.

An example mutation is:

mutation authPermissionSetDelete{
  authPermissionSetDelete( id: "4cc2d415-a95e-475e-91d2-5b83ddfcedeb") {
    id
  }
}
Additional Technical Documentation Information
Properties
12/13/2023 7:03 PM
12/13/2023 7:04 PM
12/13/2023 7:04 PM
Documentation
Documentation
000003990
Translation Information
English
Powered by