The security model in the IBSS platform has been enhanced to include app security rights as well as data model security rights.
App Security vs Data Model Security
App security rights determine what a user is allowed to do on the IBSS platform whilst data model security rights determines what data the user can create, read, update and delete in the IBSS platform.
Data Model Rights
The IBSS Platform provides Data Model rights on the following functions in a record:
- Create - the ability to create a new record of that type.
- Read - the ability to read a record.
- Update - the ability to modify a record.
- Delete - the ability to remove a record.
- Lock - the ability to lock a record (not used).
- Unlock - the ability to unlock a record (not used).
- Share - the ability to share rights to the record with another entity.
For each of these rights, the following levels can be applied:
- None - no rights.
- Basic - rights apply only to records owned by me.
- Local - rights apply to records which are owned by any role that I belong to.
- Deep - rights apply to records which are owned by any role (or parent role) that I belong to.
- Global rights apply to all records of that type.
Note: To amend Data Model rights, please contact IBSS support.
The following lists the record types to which Data Model security can be applied:
Event Type |
Description [Type] |
|---|---|
BookingParties |
Stores data about parties of a booking. [Data] |
| BookingPolicies | Stores data about booking policies. [Data] |
BookingSpaces |
Stores information used for Linked Spaces. [Data] |
Bookings |
Stores booking information. [Data] |
BookingsDailySummary |
Stores daily summary of bookings. [Data] |
BuildingKPIs |
Stores BuildingKPI configuration. [Config] |
| CateringMenuItems | Stores all orderable catering items per building. [Data] |
| CateringMenus | Stores a collection of Catering items per building defined by a from and to date. [Data] |
| CateringOrderPolicies | Stores the pantry/kitchen operating hours and preparation times for catering items per building. [Config] |
| CateringOrders | Stores orders associated to bookings. [Data] |
| CateringRestrictions | Stores common restrictions (dietary and allergen) across an organisation that can be associated with catering items. [Data] |
| CateringSuppliers | Stores a list of suppliers per organisation that may supply catering items. [Data] |
| ConnectorsConfiguration |
✅ new Stores permissions required for connectors that are deployed as part of the platform. Permissions depend on the type of the connector. |
CostCodes |
Stores Cost Codes information. [Data]
Provides the CRUD rules to the cost codes for CREATE/READ/UPDATE/DELETE.
|
| Delegates |
✅ new Stores permissions for delegates. |
Devices |
Stores Device configuration. [Config] |
DevicesStatus |
Stores feedback from deployed devices. [Data] |
EnvironmentalFloorData |
Stores summarised environmental data per floor. [Data] |
EnvironmentalSensors |
Stores information about environmental sensors. [Config + Data] |
EnvironmentalZoneDailySummary |
Stores daily summary environmental information. [Data] |
EnvironmentalZoneData |
Stores real-time environmental information. [Data] |
EnvironmentalZoneSummary |
Stores 30 minute summary environmental information. [Data] |
EnvironmentalZones |
Stores environmental zone configuration. [Config] |
Equipment |
Stores equipment information. [Config + Data] |
| Filters |
✅ new Stores filters information. |
| IdentityProviders | Stores identity provider details of the organisation. [Config] |
Nodes |
Stores node hierarchy (Organisation > Floor level). [Config] |
| Notes |
✅ new Stores rules for visitor notes. |
NotificationRules |
Stores notification rules information. [Data] |
Notifications |
Stores generated notifications. [Data] |
Parameters |
Stores parameter information. [Config + Data] |
ResolversCategories |
Stores link information between resolvers and task categories. [Data] |
ResolversDailySummary |
Stores daily summary by resolver. [Data] |
RoleDataSecurity |
Stores information about what rights each role has. [Data] |
Roles |
Stores role information. [Data] |
| Signage | Stores signage information (Deprecated) |
SpaceCateringMenu |
Stores catering information. [Config + Data] |
SpaceInformation |
Stores Space Information. [Data] |
SpaceStates |
Stores state information for each Space State. [Config] |
SpaceUtilisationSummary |
Stores live summary data for spaces. [Data] |
SpaceZones |
Stores zone to space associations. [Data] |
Spaces |
Stores spaces information. [Config + Data] |
SpacesDailySummary |
Stores daily summary of space usage. [Data] |
| SpacesMonthlySummary | Stores monthly summary of space usage (Deprecated) |
SpacesSpaceInformation |
Stores link between spaces and space information. [Config] |
SpacesSummary |
Stores 15 minute summary data of spaces. [Data] |
| SpacesWeeklySummary |
(future option) Stores weekly summary of space usage. [Data] |
SupportedVersions |
Stores supported versions of client apps. [Data] |
| Tag2EventType |
✅ new Stores permissions to use tags. |
| TagDefinitions |
✅ new Prerequisite for Tag2EventType. Stores permissions to create tags. Users must have Create, Update, and Delete permissions to be able to work with tags. |
TaskCategories |
Stores Task categories information. [Data] |
TaskStates |
Stores state information for each Task State. [Data] |
TaskTypes |
Stores config information about a task. [Config] |
Tasks |
Stores generated task information. [Data] |
TasksDailySummary |
Stores daily summary of tasks. [Data] |
UserNotifications |
Stores users to notifications information. [Data] |
UserRoles |
Stores the role association of a user. [Data] |
Users |
Stores user information. [Data] |
Visitors |
Stores visitor information. [Data] |
Visits |
Stores visit information. [Data] |
VisitsDailySummary |
Stores daily summary of visits. [Data] |