The table below shows the individual permissions that make up the common roles assigned in LabKey.
Roles are listed as columns, individual permissions are listed as rows. A dot indicates that the individual permission is included in the given role. For example, when you set "Update" as the required permission, you are making the web part visible only to Administrators, Editors, and users with "Editor without Delete".
Use this table when deciding the permissions required to view a web part.
| Roles | |||||||||
| Permissions | Administrators * | Editor | Editor without Delete | Author | Reader | Submitter** | Message Board Contributor | Shared View Editor | Assay Designer |
| Read | ● | ● | ● | ● | ● | ● | ● | ||
| Insert | ● | ● | ● | ● | ● | ||||
| Update | ● | ● | ● | ||||||
| Delete | ● | ● | |||||||
| Truncate | ● | ||||||||
| Participate in Message Board Discussions | ● | ● | ● | ● | ● | ||||
| Start New Discussions | ● | ● | ● | ● | |||||
| Read/Respond on Secure Message Board | ● | ● | ● | ||||||
| Edit Shared Views | ● | ● | ● | ● | |||||
| Administrate * | ● | ||||||||
| Export Folder | ● | ||||||||
| Design Assays | ● | ● | |||||||
| Design Lists | ● | ● | |||||||
| Create Datasets | ● | ||||||||
| Share Participant Groups | ● | ● | ● | ||||||
| Share Report | ● | ● | ● | ● | |||||
| Edit Shared Report | ● | ● | ● | ||||||
| Manage Study | ● | ||||||||
| Manage Notifications | ● | ||||||||
* See the Administrator Permissions Matrix
** See specific details about using the Submitter role.
These roles are granted at the site level and grant specific permissions typically reserved for administrators.
Impersonating Troubleshooter:See Privileged Roles.
Application Admin: See the Privileged Roles.
Troubleshooter: See the Administrator Permissions Matrix.
See Email Addresses: This role grants the to see user email addresses; a permission typically reserved for Administrators.
See Audit Log Events: This role grants the ability to see audit log events; a permission typically reserved for Administrators.
Email Non-Users: This role grants the ability to email non-users; a permission typically reserved for Administrators.
See Absolute File Paths: This role grants the ability to see absolute file paths; a permission typically reserved for Administrators.
Use SendMessage API: This role grants the ability to use the send message API; a permission typically reserved for Administrators.
Platform Developer: This role grants the ability to write and deploy code outside the LabKey security framework. Use caution when granting this role.
Project Creator: Allows users to create new projects via the CreateProject API and optionally also grant themselves the Project Administrator role in that new project. Note that creating new projects in the UI is not granted via this role. Only Site Administrators can create new projects from the project and folder menu.
Trusted Analyst: (Premium Feature) This role grants the ability to write code in a sandboxed environment and share it with other users.
Analyst: (Premium Feature) This role grants the ability to write code in a sandboxed environment, but not to share it with other users.
| previousnext |
| expand allcollapse all |
