User permissions

ComInd's permission system controls who can access and modify data within your workspace through a combination of roles, groups, and granular access controls.

Workspace roles

Each workspace includes three predefined roles:

Workspace admin: full administrative access to the workspace
Workspace user: standard user access with configurable permissions
Inactive workspace user: restricted access for users who no longer actively participate

Permission groups

For more advanced permission scenarios, you can use groups to organize users:

Global groups (METAMETA): created by system administrators and available across all workspaces
Workspace groups: managed by workspace administrators and specific to the current workspace

Data access permissions

App-level access

Users need permission to view and interact with specific applications within the workspace.

Record-level permissions

Access to individual records can be:

Predefined: set by default rules when records are created
Dynamic: updated on a per-record basis as needed

Field-level visibility

Specific fields within records can be hidden from certain users or groups, providing granular control over sensitive information.

Action permissions

Preconditions

Users can only see and perform actions they're authorized to execute. Unauthorized actions are automatically hidden from the interface.

Data consistency rules

Post-conditions ensure data integrity by preventing certain changes to records, which users often perceive as permission restrictions.

Workspace roles​

Permission groups​

Data access permissions​

App-level access​

Record-level permissions​

Field-level visibility​

Action permissions​

Preconditions​

Data consistency rules​