• Platform Developer
• Developer Site Group
• Developer Links Menu
• Trusted Analyst: (Premium Feature)
• Analyst: (Premium Feature)

Platform Developer

The Platform Developer role allows admins to grant developer access to trusted individuals who can then write and deploy code outside the LabKey security framework. By default, the Developer group is granted this role on a site-wide basis. When that code is executed by others, it may run with different permissions than the original developer user had been granted.

Grant the Platform Developer Role

To grant the platform developer role, an administrator selects (Admin) > Site > Site Permissions. They can either add the user or group directly to the Platform Developer role, or if the Developers site group is already granted this role (as shown below) they can add the user to that group by clicking the "Developers" box, then adding the user or group there.

Platform Developer Capabilities

The capabilities granted to users with the Platform Developer role include the following. They must also have the Editor role in the folder to use many of these:

• APIs:
• View session logs
• Turn logging on and off
• Reports:
• Create script reports, including JavaScript reports
• Share private reports
• Create R reports on data grids
• Views:
• Customize participant views
• Access the Developer tab in the plot editor for including custom scripts in visualizations
• Export chart scripts
• Schemas and Queries:
• Create/edit/delete custom queries in folders where they also have the Editor role
• View raw JDBC metadata
• JavaScript:
• Create and edit announcements with JavaScript
• Create and copy text/HTML documents with JavaScript
• Create and edit wikis with JavaScript using tags such as <script>, <style>, and <iframe>
• Upload HTML files that include JavaScript with tags such as <script>, <style>, and <iframe>
• Create tours
• Developer Tools:
• More verbose display and logging
• Developer Links options on the (Admin) menu
• Use of the mini-profiler
• etc.

Developer Site Group

One of the built in site groups is "Developer". This is not a role, but membership in this group was used to grant access to developers prior to the introduction of the platform developer role. By default, the Developers site group is granted the platform developer role.

Developer Links Menu

Developers have a access to additional resources on the (Admin) menu.

Select Developer Links for the following options:

• Schema Browser
• Memory Allocations
• Server JavaScript Console
• JavaScript API Reference
• SQL Reference
• XML Schema Reference

• Module Editor: (Premium Feature)

Trusted Analyst

The role Trusted Analyst grants the ability to write code that runs on the server in a sandbox.

Sandboxing is a software management strategy that isolates applications from critical system resources. It provides an extra layer of security to prevent harm from malware or other applications. Note that LabKey does not verify security of a configuration an administrator marks as "sandboxed".

Code written by trusted analysts may be shared with other users and is presumed to be trusted. Admins should assign users to this role with caution as they will have the ability to write scripts that will be run by other users under their own userIds.

To set up the Trusted Analyst role:

• Set up a sandboxed script engine in a folder.
• In the same folder, give the Editor role to the desired script/code writers.
• Go to (Admin) > Site > Site Permissions and give the Trusted Analyst role to the desired script/code writers.

Analyst

The role Analyst grants the ability to write code that runs on the server, but not the ability to share that code for use by other users. For example, an analyst can use RStudio if it is configured, but may not write R scripts that will be run by other users under their own userIDs.

Related Topics

• Security Roles Reference
• Role / Permissions Matrix
• Sandboxed R Engine Configurations