General Concept
Newton’s User-/Access Rights system is flexible and granular and consists of Rights, Roles, Groups, and Collections to define access to certain Newton software functions or areas.
The general structure is RIGHTS → ROLE → GROUP, where users cannot be assigned rights directly, but rather a role assignment is required.
A user without an assigned role can log in to Newton but won’t see anything.
Role
A set of Rights defines a Role.
The “System Administrator” Role has all Rights, including the Right to change Roles, Groups, and Collections.
Because Roles cannot be used to invite new users, we added a Group “Newton Administrator” with the Role “System Administrator”.
Group
A set of Roles defines a Group.
In addition, user access can be restricted to specific data. All combinations are allowed: Used to grant access to a set of: