With role-based access control enabled, you can view all of a user's permissions in one place whether the role was assigned to a user individually or through a user group. Each permission indicates where it is inherited from - the individual user or a group, the role assigned, and the resource sets. You can click any of these items to open the associated group, role, and resource set to see more information and make any necessary changes.
1. From the main menu, click Settings > Account and, in the Users tab, click Edit beside the user whose permissions you want to view.
2. Click the Permissions tab to see all permissions for this user.
Active permissions appear with a green checkmark. If the user does not have permission for a specific item, it appears with a grey x.
For each permission, you can see where it is inherited from. The format is <group or user>/<role>/<resource sets>. If a user has multiple roles assigned that provide permission for that item, each one is listed as a separate row.
In this example, we can see that the user has permission to create new patients via two roles - the physician role (assigned via the All Practitioners group) and the super user role (assigned directly to the individual user). And the user has access to the Cocotree location patients from the physician role. For the Destroy, Merge, and Reactivate permissions, we can see that these are inherited from the super user role, and that there were no resource sets applied when assigning that role to the user.
3. To make changes or view more information, click the group name to open the Edit Group window, click the role to open the Edit Role window, and click the resource set to open the Edit Resource Set window.
📌 Note: Any changes you make to the group, role or resource set will be applied to all applicable users.
4. Click Close when you are finished viewing the permissions.
Updated June 28, 2022