Data Model Security

Written By Sam Walton (Super Administrator)

Updated at August 6th, 2024

The security model in the IBSS platform has been enhanced to include app security rights as well as data model security rights. 

App Security vs Data Model Security

App security rights determine what a user is allowed to do on the IBSS platform whilst data model security rights determines what data the user can create, read, update and delete in the IBSS platform.

Data Model Rights

The IBSS Platform provides Data Model rights on the following functions in a record:

  • Create - the ability to create a new record of that type.
  • Read - the ability to read a record.
  • Update - the ability to modify a record.
  • Delete - the ability to remove a record.
  • Lock - the ability to lock a record (not used).
  • Unlock - the ability to unlock a record (not used).
  • Share - the ability to share rights to the record with another entity.

For each of these rights, the following levels can be applied:

  • None - no rights.
  • Basic - rights apply only to records owned by me. 
  • Local - rights apply to records which are owned by any role that I belong to. 
  • Deep - rights apply to records which are owned by any role (or parent role) that I belong to.
  • Global rights apply to all records of that type.

Note: To amend Data Model rights, please contact IBSS support.

The following lists the record types to which Data Model security can be applied:

Event Type
Description [Type]
BookingParties
Stores data about parties of a booking. [Data]
BookingPolicies Stores data about booking policies. [Data]
BookingSpaces
Stores information used for Linked Spaces. [Data]
Bookings
Stores booking information. [Data]
BookingsDailySummary
Stores daily summary of bookings. [Data]
BuildingKPIs
Stores BuildingKPI configuration. [Config]
CateringMenuItems Stores all orderable catering items per building. [Data]
CateringMenus Stores a collection of Catering items per building defined by a from and to date. [Data]
CateringOrderPolicies Stores the pantry/kitchen operating hours and preparation times for catering items per building. [Config]
CateringOrders Stores orders associated to bookings. [Data]
CateringRestrictions Stores common restrictions (dietary and allergen) across an organisation that can be associated with catering items. [Data]
CateringSuppliers Stores a list of suppliers per organisation that may supply catering items. [Data]
ConnectorsConfiguration

✅ new

Stores permissions required for connectors that are deployed as part of the platform. Permissions depend on the type of the connector.

CostCodes
Stores Cost Codes information. [Data] 
Provides the CRUD rules to the cost codes for CREATE/READ/UPDATE/DELETE.
Delegates

✅ new

Stores permissions for delegates.

Devices
Stores Device configuration. [Config]
DevicesStatus
Stores feedback from deployed devices. [Data]
EnvironmentalFloorData
Stores summarised environmental data per floor. [Data]
EnvironmentalSensors
Stores information about environmental sensors. [Config + Data]
EnvironmentalZoneDailySummary
Stores daily summary environmental information. [Data]
EnvironmentalZoneData
Stores real-time environmental information. [Data]
EnvironmentalZoneSummary
Stores 30 minute summary environmental information. [Data]
EnvironmentalZones
Stores environmental zone configuration. [Config]
Equipment
Stores equipment information. [Config + Data]
Filters

✅ new 

Stores filters information.

IdentityProviders Stores identity provider details of the organisation. [Config]
Nodes
Stores node hierarchy (Organisation > Floor level). [Config]
Notes

✅ new 

Stores rules for visitor notes.

NotificationRules
Stores notification rules information. [Data]
Notifications
Stores generated notifications. [Data]
Parameters
Stores parameter information. [Config + Data]
ResolversCategories
Stores link information between resolvers and task categories. [Data]
ResolversDailySummary
Stores daily summary by resolver. [Data]
RoleDataSecurity
Stores information about what rights each role has. [Data]
Roles
Stores role information. [Data]
Signage Stores signage information (Deprecated)
SpaceCateringMenu
Stores catering information. [Config + Data]
SpaceInformation
Stores Space Information. [Data]
SpaceStates
Stores state information for each Space State. [Config]
SpaceUtilisationSummary
Stores live summary data for spaces. [Data]
SpaceZones
Stores zone to space associations. [Data]
Spaces
Stores spaces information. [Config + Data]
SpacesDailySummary
Stores daily summary of space usage. [Data]
SpacesMonthlySummary Stores monthly summary of space usage (Deprecated)
SpacesSpaceInformation
Stores link between spaces and space information. [Config]
SpacesSummary
Stores 15 minute summary data of spaces. [Data]
SpacesWeeklySummary

(future option)

Stores weekly summary of space usage. [Data]

SupportedVersions
Stores supported versions of client apps. [Data]
Tag2EventType

✅ new

Stores permissions to use tags.

TagDefinitions

✅ new

Prerequisite for Tag2EventType. Stores permissions to create tags. Users must have Create, Update, and Delete permissions to be able to work with tags.

TaskCategories
Stores Task categories information. [Data]
TaskStates
Stores state information for each Task State. [Data]
TaskTypes
Stores config information about a task. [Config]
Tasks
Stores generated task information. [Data]
TasksDailySummary
Stores daily summary of tasks. [Data]
UserNotifications
Stores users to notifications information. [Data]
UserRoles
Stores the role association of a user. [Data]
Users
Stores user information. [Data]
Visitors
Stores visitor information. [Data]
Visits
Stores visit information. [Data]
VisitsDailySummary
Stores daily summary of visits. [Data]