Scopes are used to control permissions in role based security in addition to ACL permissions. ACL lists are used to control who can do certain operations for a single object (like a folder). Scopes are overrides ACL checks for certain operations on all objects. For example you can deny viewing all folders even user has permission.
Emakin defines following scopes to control features;
| Scope | Description | Default Value |
|---|---|---|
| login | ||
| logoff | ||
| event_trigger | ||
| module_execute | ||
| decision_execute | ||
| user_profile | ||
| process_read | ||
| process_write | ||
| process_initiate | ||
| worklist_read | ||
| workitem_action | ||
| workitem_forward | ||
| workitem_tag | ||
| workitem_history | ||
| workitem_search | ||
| activity_read | ||
| activity_write | ||
| folder_read | ||
| folder_write | ||
| folder_report | ||
| document_read | ||
| document_write | ||
| calendar_read | ||
| calendar_write | ||
| market_read | ||
| jobs_write | ||
| domain_write | ||
| organization_read | ||
| organization_write | ||
| groups_write | ||
| file_read | ||
| file_write | ||
| database_read | ||
| network | ||
| notifications | ||
| help | ||
| dashboard | ||
| fulltext_search |