Learn about each Template and Workflow Permission that can be granted in a System Role.
Template and Workflow Permissions are a collection of abilities granted for specific Templates and Workflows. These Permissions give Users the ability to see and work with Items in which they may not be on the Team.
Pro Tip: The Workflow and Template fields have an "or" relationship. For example, entering a Workflow and a Template applies the permissions to all Items that belong to either the Workflow or the Template.
Location Options
All Template and Workflow Permissions except for "Participate" also specify where in the Network the Permission is valid. For example, a User might have Edit Permission for Improvements, but that doesn't necessarily mean they can Edit all Improvements in the system. The scope of their Permission depends on to which Locations their Permission is applied.
The Network Locations options are:
- Everywhere: The Permission is applied to all Items within the specified Template or Workflow, regardless of what Network Location the Item has.
- Location and Below: The Permission is applied to all Items within the specified Template or Workflow that are in the User's Network Location and the Network Locations nested beneath it.
- Only Location: The Permission is applied to only Items within the specified Template or Workflow that are in the User's Network Location.
- Only User's: The Permission is applied to only Items within the specified Template or Workflow in which the User is also on the Item Team.
- This option is only available on the Assign, Toggle Private, and Delete Permissions.
Pro Tip: KaiNexus will reference an Item's Responsible Location when determining whether a User with a certain System Role has Permission to work with it.
Template and Workflow Permissions
Participate
The Participate Permission provide the ability to create and participate in Items as team members.
- Most organizations give this permission to everybody everywhere, but some organizations use this permission to limit participation in certain improvement work.
View
Provides the ability to view other Users’ public Items that are not in New status within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- Most organizations give this permission to everybody everywhere, but some organizations will use this permission to limit the visibility of improvement work across Locations. In order to promote transparency in KaiNexus, General Users will almost always be given this permission at some level.
View New
Provides the ability to view other users' public Items in every status, including New, within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- This permission should be given to people who should see New Items as soon as they're entered into the system, instead of only being able to see them after they've been assigned or activated.
- This permission is typically given to leaders and/or improvement specialists.
Edit
Provides the ability to edit Items the User has permission to view within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- This permission is typically given to leaders and/or improvement specialists who should have widespread edit abilities without the ability to view new Items or assign Items.
Request
Provides the ability to request people to become the Responsible Team Role on an Item within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- This permission also implicitly grants Edit permissions for Standard Items within the selected Locations.
- This permission is often given to leaders, improvement specialists, and/or managers of a location that should be able to request that people outside their Location(s) work on an item. Often these people will have the Assign permission in their own Location but only the Request permission outside of their Location.
Assign
Provides the ability to assign Items the user has permission to view within the selected Location(s).
- This permission can be given Everywhere, Location and Below, Only Location, or Only User's.
- This permission also implicitly grants the View New, View, and Edit permissions for Standard Items within the selected Locations.
- This permission is typically given to leaders and/or improvement specialists.
View Private
Provides the ability to view other users' Private Items — regardless of status — within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- This permission is typically given to leaders and/or improvement specialists.
Toggle Private
Provides the ability to make a public Item private or a private Item public in the selected Location(s). A person must also have the Edit permission (described above) or have Primary Edit ability on an Item based on their Team Role in order to toggle the Item's Private status.
- This permission can be given Everywhere, Location and Below, Only Location, or Only User's.
- This permission is typically given to leaders and/or improvement specialists.
Honor Roll
Provides the ability to add or remove Honor Roll from Items the user has permission to view within the selected Location(s).
- This permission can be given Everywhere, Location and Below, or Only Location.
- This permission is often given to leaders, improvement specialists, and/or managers of Locations that should be able to highlight particularly noteworthy Items.
Delete
Provides the ability to delete Items the user has permission to view within the selected Location(s). A person must also have the Edit permission (described above) or have Primary Edit ability on an Item based on their Team Role in order to delete the Item.
- This permission can be given Everywhere, Location and Below, Only Location, or Only User's.
- The permission is usually only given to "superusers." If necessary, though, it can be granted to leaders and improvement specialists in a Location, or to frontline people at the Only Users level.
Next in Series
Now that you understand Template and Workflow Permissions, we recommend preceding to the next article in this series about each Advanced Permission that can be granted in a System Role.