In ActivityInfo, a Permission is a right given to a user to allow them to perform a specific Operation. Without the required Permission, a user will be prevented from performing that Operation.
This references describes all Operations which can be granted to users.
Basic operations
View
The view operation allows users to view a resource, such as database, a form, a subform, or a report.
When applied to a form or subform, the operation includes the ability to view the form or subform’s records.
When applied to a form, the permission to view records can be restricted using conditions.
Add record
The permission to add a new record to a form or a subform.
Edit record
The permission to edit an existing record to a form or subform.
Delete record
The permission to delete a single record.
Bulk delete record
The permission to delete multiple records at once through the user interface.
Note that this permission only applies to the user interface. A sophisticated user can use the API to automate the deletion of a large number of records, even if they do not have the “Bulk delete record” permission.
Export records
The permission to export records from the user interface.
Even with the Export records permission, a user can only export records for which they have permission to view.
User management
Manage users
The permission to invite users to the database, and to remove users from the database.
Even with this permission, users can only invite or modify the permissions of users whose permissions are strictly inferior to their own.
Manage roles
The permission to add, modify, and delete any role in the database.
This permission should be granted with extreme caution, as it will allow a user to elevate their own permissions without limitation.
Design
Add forms, folders, and reports
The permission to add a new database “resource”, which includes forms, folders and reports.
Edit forms, folders, and reports
The permission to edit an existing database “resource”, which includes forms, folders and reports.
Delete forms, folders, and reports
The permission to delete an existing database “resource”, which includes forms, folders and reports.
Management
Manage translations
Includes permissions to:
- Define the database’s original language
- Add additional translation languages to the database
- Run automatic translation via Google Translate
- View and update translations manually
Manage record locks
The permission to add, edit, and delete rule-based and date-based locks.
Manage collection links
The permission to open and close collection links.
Audit user actions
The permission to view the Audit Log in Database settings.
Granting this permission allows the user to view the history of deleted records.
Note that any user with permission to view records will be able to view the history of an individual record in the form view, even if they don’t have the “Audit user actions” permission.
Sharing and publishing
Publish reports
The permission to publish reports that include data from forms for which the user has been given this permission.
Published reports can be accessed by anyone on the internet with the link to the report, so you should consider this permission to be potentially dangerous. You should only grant this permission to users who you trust to exercise good judgement about what aspects of your data can be safely published.
When a report is saved as part of a database and published, revoking this permission from the user who published the report does not unpublish the report. This is because once the report is saved as part of a database, it is no longer owned by a specific user.