Permissions in IVION
Permissions in NavVis IVION are managed using groups. Rather than assigning permissions to each user, users are added to one or more groups, and permissions are granted based on a user's group membership.
Groups
NavVis IVION's group system is hierarchical. A group can have multiple subgroups, which in turn can have subgroups, and so on.
Users can be assigned to multiple groups. They have to be added manually to each group and/or subgroup.
NavVis IVION has a default list of groups, which you can edit via User Management > Groups.
Each group has a name and a set of permissions applied to it. The permissions control what kind of content members of the group can create, view, and publish. You can edit the permissions of a group via User Management > Groups.
As the name implies, if a user is in the Editor group, this means they have edit permissions, if a user is in the Viewer group this means they only have permission to view.
Users can only see groups they are a member of.
Default Groups
| Level | Group |
|---|---|
| Instance | Everyone |
| Global Admin | |
| Site | Admin (Site Admin) |
| Editor | |
| Viewer |
Default View/ Edit Site Permissions
permission assigned
permission not assigned
permission not accessible
| Page/ Side Menu/ Action | Feature | User Groups | ||||
|---|---|---|---|---|---|---|
| Everyone | Global Admin | Site Admin | Editor | Viewer | ||
| Instance Permissions | ||||||
| Home page | | | | | | |
| User profile | | | | | | |
| Sites overview | | | | | | |
| Sites search | | | | | | |
| Instance settings | Instance configuration | | | | | |
| Subscription | | | | | | |
| User management | Managing Users | | | | | |
| Defining user permissions | | | | | | |
| Managing groups instance level | | | | | | |
| Managing groups site level | | | | | | |
| View Site Permissions | ||||||
| View Settings | | | | | | |
| Search | | | | | | |
| Routing | | | | | | |
| Datasets viewer | Dataset tree viewer | | | | | |
| Edit dataset name | | | | | | |
| Edit dataset permissions | | | | | | |
| POI types | View POI types | | | | | |
| Create POI types | | | | | | |
| Edit POI types | | | | | | |
| POI | View POI | | | | | |
| Create POI | | | | | | |
| Edit POI | | | | | | |
| Share | | | | | | |
| Site model attributes | View | | | | | |
| Edit | | | | | | |
| Mark & Measure tool | | | | | | |
| Crop & Download tool | | | | | | |
| Processing Data | | | | | | |
| Settings | Site configuration | | | | | |
| Download data | | | | | | |
| Task manager | | | | | | |
| Site Setup Permissions | ||||||
| View Settings | | | | | | |
| Datasets viewer | | | | | | |
| Share | | | | | | |
| Dataset management | | | | | | |
| Dataset alignment | | | | | | |
| Site model editor | | | | | | |
| Navigation graph | | | | | | |
| Vector map | | | | | | |
| Settings | Hidden images | | | | | |
| Edit site location | | | | | | |
| Publish | | | | | | |
Additional Permissions
After an instance is created, a Global Admin or Site Admin can make changes to the groups by assigning or removing permissions:
Global Admin
Global admins have access to all sites, site content, and functions in an instance.
By default, every instance has a global admin account. The first user to log into NavVis IVION automatically becomes a global admin.
Members of the global admin group can add more users to this group.
Site Admin
Site admins have full access to their sites' content. A user can be a site admin of multiple sites.
Everyone
All users added to NavVis IVION are automatically part of the Everyone group. This applies to registered users with individual sign-in credentials as well as guest users, who do not have their own sign-in credentials.
-
Everyone users (these are users that are not part of any group) will only be able to see public sites (they cannot access private sites). In reverse that means that Everyone users will be able to access all public sites.
-
The Everyone user group can be edited by selecting the General tab in the site drop-down menu on the Groups page, here you can also adjust the permissions the Everyone Group has.
Guest Users
Users that are added to NavVis IVION, are not automatically added to a group apart from the Everyone group. They are considered guest users and their permissions are limited to viewing, navigating, and searching within NavVis IVION. By default, these users do not have creation or editing permissions. To give users additional permissions, add them to an existing group or create a new group with the appropriate permissions.
Data Processing Rights
Users with Data Processing rights will be permitted to perform the following actions:
-
Upload unprocessed data
-
Launch processing tasks
-
Work with processed data