Expense Category
Last updated
Last updated
Purpose: Controls access to expense cateogory based on the user's relationship to the data.
Creator: The user who created the category.
Defines the relationship between other parties and the associated user that determines their permission to access the data.
Myself: The associated user have access to data directly related themselves.
Superior: The user’s direct supervisor have access to the data.
All Superiors: All higher-ups in the organization hierarchy have access to the data.
Subordinates: Users reporting directly to the associated user have access to the data.
All Subordinates: All users lower in the organizational hierarchy have access to the data.
HOD (Head of Department): The department head has access to the data.
Same Department: Users from the same department have access to the data.
Same Role: Users with the same role have access to the data.
Use selector: Allows users to select an expense category, enabling them to choose the appropriate category when entering or managing expense records.
Remark:
Without use selector permission, the user will not be able to view the category while reimbursing expenses.
Purpose: Provides the ability to monitor and manage data at various organizational levels.
All Users: Permissions apply to all users.
Specific User: Permissions granted based on individuals.
Specific Role: Permissions granted based on role.
Specific Department: Permissions granted based on department.
Defines the scope of data a user can access based on their hierarchical position within the organization.
Myself: Access to data directly related to the user.
Superior: Access to data created by the user’s direct supervisor.
All Superiors: Access to data created by all higher-ups in the organization hierarchy.
Subordinates: Access to data created by the user's subordinate.
All Subordinates: Access to data created by the user’s direct subordinates and their subordinates (i.e., the entire reporting chain under the user).
HOD (Head of Department): Access to data created by the department head.
Same Department: Access to data created by all users within the same department
Same Role: Access to data created by users holding the same role, even if they are in different departments.
Purpose: Allows to configure the actions that the users are authorized to perform.
Use selector: Allows users to select an expense category, enabling them to choose the appropriate category when entering or managing expense records.
Purpose: Manages access to different features or functionalities within the expense category.
All Users: Permissions apply to all users.
Specific User: Permissions granted based on individuals.
Specific Role: Permissions granted based on role.
Specific Department: Permissions granted based on department.
Purpose: Allows to configure the actions that the users are authorized to perform.
Import: Allows batch creation of records by uploading data from an Excel file.
Displays permission log in a chronological timeline, allowing users to see when each permission was created and track its history over time.
Presents permission log in a detailed list format, typically showing columns with permission details such as source, operation time, operation date, and etc.
In both view, the log can be filtered by operation type, by the creation time using the existing time filter, or by customizing the range with the "Time range" button.
The user can search log based on log content or operating target that match or are similar to the text entered in the search box.
Purpose: To provide clear overview of who is granted specific permissions and grouping the data by different dimensions.
Purpose: This dimension provides an overview of the specific types of permissions assigned and to whom they are granted.
Remark:
Permission Type: The type of action or permission granted (e.g., View, Edit, Delete, etc.).
Scope: Defines who the permission applies to (e.g., specific user, role, department, all users).
Data Filtering: This refers to any restrictions applied to the data a user can access based on specific criteria (e.g., only data related to their department, subordinates, or specific customers).
Purpose: Shows the individual users and the specific permissions they have, along with the extent to which they can access or modify data.
Remark:
User: The specific person (e.g., Axel, Matthew).
Data penetration: Indicates how deep the user's permissions reach (e.g., whether they can see only their own data, their subordinates' data, or a broader range).
Existing permissions: Lists the actions the user can perform (e.g., Import).
Data Filtering: Specifies the data the user can access based on filtering conditions (e.g., only customers from a specific region).
Purpose: Provides a role-based view of permissions, useful for managing large groups of users. It defines what permissions are granted to users based on their role in the organization.
Remark:
Role: Specifies the role (e.g., Account Manager, Support Engineer).
Data Penetration: Indicates how deep the role's permissions reach (e.g., whether they can see only their own data, their subordinates' data, or a broader range).
Existing permissions: Lists the actions the user can perform.
Data Filtering: Specifies the data the role can access based on filtering conditions (e.g., only customers from a specific region).
Purpose: Provides a department-wide view of permissions, often used to grant broader access to users within a specific functional area (e.g., sales, support).
Remark:
Department: Specifies the department (e.g., Sales, Purchase).
Data Penetration: Indicates how deep the department's permissions reach (e.g., whether they can see only their own data, their subordinates' data, or a broader range).
Existing permissions: Lists the actions the user can perform (e.g., View, Edit).
Data Filtering: Specifies the data the role can access based on filtering conditions (e.g., only customers from a specific region).
Purpose: Allows permissions to be controlled based on the relation of the user to specific data fields.
Remarks:
Associated field: Defines the user’s relationship to the data.
Data Penetration: Indicates how deep the department's permissions reach (e.g., whether they can see only their own data, their subordinates' data, or a broader range).
Existing permissions: Lists the actions the user can perform.
Data Filtering: Specifies the data the role can access based on filtering conditions (e.g., only customers from a specific region).
