ESciDoc Access Rights

From MPDLMediaWiki
Jump to navigation Jump to search

Work in progress

Related discussion[edit]

see ESciDoc Institutional Visibility Discussion

Retrieval of items and components[edit]

  • Rule of thumb: a component cannot be retrieved only if the user has no privilege to view it's enclosing item

On item statuses and transitions[edit]

  • Transition of item status is never changing the version number
  • Below transitions to be reconsidered


Current implementation of transitions[edit]

Item status FROM Item version status FROM Method Item status TO Version status TO
pending pending submit submitted submitted
submitted submitted revise in-revision in-revision
submitted submitted release released released
in-revision in-revision submit submitted submitted
released released update(new version created) released pending
released pending submit released submitted
released submitted release released released
released submitted release released released

Alternative A: Possible transitions[edit]

Item status FROM Item version status FROM Method Item status TO Version status TO
pending pending submit submitted submitted
submitted submitted revise submitted in-revision
submitted submitted release released released
submitted in-revision submit submitted submitted
submitted in-revision release released released
released released revise released in-revision
released in-revision release released released
released any release withdrawn any(as before)


Alternative B: Possible transitions[edit]

Description of the access component rules table[edit]

  • Item status - the public-status of the item. Item may have different public status then the status of the last version of the item.
  • Version status - the status of the last version of the item
  • Who may access - Name of the role or group that can access the content associated with the component of the item.
  • Where is role defined - The eSciDoc resource type for which the role or group has been associated when granting privilege for access
  • Which access level - The access level that the component should have specified in order to be retrievable by the role or group specified in "Who may access" column. (Any is used in case when the access level is not limitation if user is granted with appropriate role)


Description of the roles/groups in the access component rules table[edit]

  • Depositor - user who can create items in the repository and manage items (including components and their content) she created in accordance with the overall workflow rules.
  • DataAdmin - user who has the possibility to create items and manage items (including components and their content) independently from their ownership and in accordance with the overall workflow rules.
  • QARole - placeholder for roles in the system that are responsible for the quality assurance of the data e.g. Metadata editor, Moderator, Authority, Rights checking.


Access component rules table[edit]

Item status Item version status Who may access Where is access level defined Which access level
pending pending Depositor (only if owner)
DataAdmin
Context Any
pending pending Colaborator Component (thus Item implicitly) Any
submitted submitted, in revision Depositor (if owner)
DataAdmin
QARole
Context Any
submitted submitted, in revision Colaborator Component (thus item implicitly) Any
released pending, submitted, released, in revision Depositor (if owner)
DataAdmin
QARole
Context Any
released pending, submitted, released, in revision Colaborator Component (thus item implicitly) Any
released released Any user Component (thus item implicitly) Public
withdrawn pending, submitted, released, in revision Depositor (if owner)
DataAdmin
QARole
Context Any