Scopes are used to control permissions in role based security in addition to ACL permissions. ACL lists are used to control who can do certain operations for a single object (like a folder). Scopes are overrides ACL checks for certain operations on all objects. For example you can deny viewing all folders even user has permission.
Emakin defines following scopes to control features;
Scope | Description | Default Value |
---|---|---|
login | ||
logoff | ||
event_trigger | ||
module_execute | ||
decision_execute | ||
user_profile | ||
process_read | ||
process_write | ||
process_initiate | ||
worklist_read | ||
workitem_action | ||
workitem_forward | ||
workitem_tag | ||
workitem_history | ||
workitem_search | ||
activity_read | ||
activity_write | ||
folder_read | ||
folder_write | ||
folder_report | ||
document_read | ||
document_write | ||
calendar_read | ||
calendar_write | ||
market_read | ||
jobs_write | ||
domain_write | ||
organization_read | ||
organization_write | ||
groups_write | ||
file_read | ||
file_write | ||
database_read | ||
network | ||
notifications | ||
help | ||
dashboard | ||
fulltext_search |