On this page you will find a short explanation on the different roles and permissions that are present in the Weaver environments and how these can be used to grant access to different functionality within the platform.

This page will focus on users that are logged in and not on users that are visiting a public space.


Read and Write Roles within Spaces:


A user can have two roles within a space, Read Access or Write Access.


This role can be changed by a user with administrative rights (see the section about global permissions).

A single user can have different roles across different spaces.


User groups can also be used to grant multiple users Write Access to a space at the same time, these groups can be created and managed by an admin.


With the introduction of domains the role for Read Access for a space can only be granted by being part of a domain, please refer to this page for more information on how to set up a Domain and assign users to it.


Read Access: Will grant the user the ability to view a space and its contents, but does not allow the user to create or edit data, views, forms, services or make use of the functions in the version control and pipelines menus.


Write Access: Will grant the user the ability to edit any data, views, forms, services and will have full access to the functions in the version control and pipelines menus.


Note:  A user will need to be part of a domain in order to see the space they have write access to.


Assigning roles to users or user groups in Spaces:


In order to assign a role to a user or member of a user group, first make sure they are part of a domain and that the domain is associated with the space.


Roles can be assigned to a user via the 'All users' submenu of 'Users and Spaces' and selecting a user.


They can also be assigned to a user group in which case each member belonging to that group will be granted these roles for a specific space.


Once selected, click on the 'Space Access' tab at the top of the screen.


On this tab press the plus sign next to the search bar in the right panel, a list of spaces will show up, select the ones you want to assign to the user or user group.



By default, access will be set to read only, you can change this so that the user or user group also has write access by changing the Read switch (pictured above) to Write.


Alternatively access to a space can also be set from the 'All spaces' submenu in the 'Users and Spaces' menu.


Select the space you'd like to grant a user or user group access to, use the tab 'User Access' or 'Group Access' respectively. Similar to the method above, the switch can be set to either Read or Write.


Global Permissions:


Global permissions are needed for a user to have access to the 'Users and Spaces' menu on the taskbar and assume the role of admin for the environment.


On a new environment an admin account will have to be created, but after that multiple users can be assigned the Global Permissions and act as admin.




NOTE: In order to be able to see and access this menu there is 1 global permissions that is required:


  1. project-administration: Allows the user to access the Users and Spaces menu and make changes to all functions found here. This includes creating spaces, users and managing user groups.



Assigning  global permissions to a user or user group:


This permission can be assigned to a user via the 'All users' submenu of 'Users and Spaces' and selecting a user.


They can also be assigned to a user group in which case each member belonging to that group will be granted this permission.


Once selected, click on the 'Granted Permissions' tab at the top of the screen.


On this tab press the plus sign next to the search bar in the right panel, select project-administration  to add this permission to the user or user group.



Once this permission has been assigned, you will need to change the switch from Read (which is the default, as pictured above) to Write.


Alternatively you can go to the 'Global Permissions' submenu in the 'Users and Spaces' menu and click on project-administration after which you can select the user or user group you would like to assign this permission to.


This page will have two tabs: 'Granted Users' and 'Granted User Groups' similar to the method described above, you can add users or groups respectively.


Quick Guide:

  • Users can have read only access or write access to a specific space
  • This permission can only be changed by a user with ACL access to the environment
  • User groups can be used to give groups of users the same rights, this can be ACL access or read/write access to specific spaces
  • Default permission for spaces for a user is read only
  • Users and spaces also need to be part of a domain to be visible to the user, more information on domains can be found here