permissions: extendedClaims: [ ] policies: ###### Should Remove after Refactor AdminRole: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false AuthenticatedRole: roles: [] clients: [ ] allowAnonymous: false allowAuthenticated: true ###### # public DeferredAffiliation: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false # public PublicBrowseDescription: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseDescriptionTemplate: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseDmp: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseDmpReference: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseDmpUser: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseReference: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseUser: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseDashboardStatistics: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicSendContactSupport: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true PublicBrowseReferenceType: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true # Elastic ManageElastic: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false # Deposit BrowseDeposit: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDeposit: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false # Language BrowseLanguage: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true EditLanguage: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteLanguage: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Statistics BrowseStatistics: roles: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: true BrowsePublicStatistics: roles: [ ] clients: [ ] allowAnonymous: true allowAuthenticated: true # Description BrowseDescription: roles: - Admin dmp: roles: - Owner - User - DescriptionContributor - Reviewer clients: [ ] allowAnonymous: false allowAuthenticated: false EditDescription: roles: - Admin dmp: roles: - Owner - DescriptionContributor clients: [ ] allowAnonymous: false allowAuthenticated: false FinalizeDescription: roles: - Admin dmp: roles: - Owner - DescriptionContributor clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDescription: roles: - Admin dmp: roles: - Owner - DescriptionContributor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false CloneDescription: roles: - Admin dmp: roles: - Owner - DescriptionContributor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Tag BrowseTag: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditTag: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteTag: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # User BrowseUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteUser: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false ExportUsers: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false BrowseDmpAssociatedUser: roles: - Admin dmp: roles: - Owner - User - DescriptionContributor - Reviewer claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DescriptionTemplateType BrowseDescriptionTemplateType: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false EditDescriptionTemplateType: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDescriptionTemplateType: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # StorageFile BrowseStorageFile: roles: [ ] claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: true EditStorageFile: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteStorageFile: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DescriptionTemplate BrowseDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor - Manager - User clients: [ ] allowAnonymous: false allowAuthenticated: false EditDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false CloneDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false CreateNewVersionDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false ImportDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false ExportDescriptionTemplate: roles: - Admin - DescriptionTemplateEditor claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Dmp BrowseDmp: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDmp: roles: - Admin dmp: roles: - Owner - User - DescriptionContributor - Reviewer clients: [ ] allowAnonymous: false allowAuthenticated: false NewDmp: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false DepositDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false CloneDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false CreateNewVersionDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false FinalizeDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false UndoFinalizeDmp: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false AssignDmpUsers: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false InviteDmpUsers: roles: - Admin dmp: roles: - Owner claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DmpBlueprint BrowseDmpBlueprint: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false EditDmpBlueprint: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false CloneDmpBlueprint: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false CreateNewVersionDmpBlueprint: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false ExportDmpBlueprint: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false ImportDmpBlueprint: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDmpBlueprint: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # EntityDoi BrowseEntityDoi: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditEntityDoi: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteEntityDoi: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # ViewPage Permissions ViewDescriptionTemplateTypePage: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false # Reference Permissions BrowseReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteReference: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DmpReference Permissions BrowseDmpReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDmpReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDmpReference: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DmpUser Permissions BrowseDmpUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDmpUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDmpUser: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # SupportiveMaterial Permissions BrowseSupportiveMaterial: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: yes allowAuthenticated: yes EditSupportiveMaterial: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteSupportiveMaterial: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # ReferenceType Permissions BrowseReferenceType: roles: - Admin - User - Manager - DescriptionTemplateEditor clients: [ ] allowAnonymous: false allowAuthenticated: false EditReferenceType: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteReferenceType: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Tenant Permissions BrowseTenant: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditTenant: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteTenant: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false AllowNoTenant: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # TenantUser Permissions BrowseTenantUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditTenantUser: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteTenantUser: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DmpDescriptionTemplate Permissions BrowseDmpDescriptionTemplate: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDmpDescriptionTemplate: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDmpDescriptionTemplate: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DescriptionReference Permissions BrowseDescriptionReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDescriptionReference: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDescriptionReference: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # DescriptionReference Permissions BrowseDescriptionTag: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditDescriptionTag: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteDescriptionTag: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Prefilling BrowsePrefilling: roles: - Admin - DescriptionTemplateEditor - Manager - User claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Lock Permissions BrowseLock: roles: - Admin - DescriptionTemplateEditor - Manager - User clients: [ ] allowAnonymous: false allowAuthenticated: false EditLock: roles: - Admin dmp: roles: - Owner - User - DescriptionContributor - Reviewer clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteLock: roles: - Admin dmp: roles: - Owner - User - DescriptionContributor - Reviewer claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # Contact Permissions SendContactSupport: roles: [] clients: [ ] allowAnonymous: false allowAuthenticated: true # ActionConfirmation Permissions BrowseActionConfirmation: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false EditActionConfirmation: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeleteActionConfirmation: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false # PrefillingSource Permissions BrowsePrefillingSource: roles: - Admin - DescriptionTemplateEditor - Manager - User clients: [ ] allowAnonymous: false allowAuthenticated: false EditPrefillingSource: roles: - Admin clients: [ ] allowAnonymous: false allowAuthenticated: false DeletePrefillingSource: roles: - Admin claims: [ ] clients: [ ] allowAnonymous: false allowAuthenticated: false