The granular access control enables users' roles and responsibilities to be set so that individuals are given access only to relevant areas or functions of the system.
There are 5 roles available:
A project creator originally created the project and has full access to the project, including viewing, editing, deleting and uploading data via the mobile client/web. A creator can add/remove any other type of users to the project, except for other creators.
A project manager has full access to the project, including viewing, editing, deleting and uploading data via the mobile client/web. A manager can add/remove curators and collectors to the project, but not managers. A manager can alter the project setting, even the forms.
A project curator has high access to the project, including viewing, editing and uploading data via the mobile client/web. A curator CANNOT alter the project settings or the forms. A curator cannot add other users to the project.
A project collector has basic access to the project, including viewing and uploading only their own data via the mobile client/web. A collector cannot make any changes to the project.
A project viewer gets READ ONLY access to a project. Viewers can view all the data collected by any other user but they cannot make any changes to the data or access any of the project settings.
If a project has access type 'private', user access will be based on their roles, as described above, provided they have been successfully authenticated by the server. Viewing, editing, deleting a project, deleting entries on the server will be based on the above roles and requires authentication.
If a project has access type 'public', then any user can view and upload data to that project via the mobile client, without any authentication, but editing and deleting a project (or entries) on the server will be based on the above roles and still requires authentication.
Users can add other users (with different roles) to a project depending on their user role, see below table:
To add a user to a project, on the project details page click on "Manage Users". Users are divided by roles, and to add one just click on "Add User" on the right.
Enter an email of an existing Epicollect5 user and select the role you would like to set the new user to:
When you start typing an email, existing Epicollect5 users' emails will be suggested. Once the user logs into Epicollect5, access to the project will be granted based on the role specified if the email address matches.
If the user does not exist on the system, you can still add him/her to the project via email.
It is possible to add users in bulk uploading a
csv file of user emails, like the one below.
Click on the arrow to show the context menu and click on "Import Users csv".
Pick the column which contains the email addresses and select the role to be applied to your new users then click on import.
Your users are now imported.
At any time you can upgrade or downgrade user roles and capabilities.
Find the user you would like to upgrade, for example from COLLECTOR to CURATOR and click the "Switch Role" button.
The user is now a CURATOR
Users can be removed in bulk by role.
For example, to remove all the COLLECTOR users go to the "Collectors" tab and open the context menu on the right.
Users can be exported as a
zip file containing the user emails as one
csvfile per each role and a global one with all the users regardless of the role.