Page 2 of 2

Re: Access Permissions

Posted: 23 Feb 2018, 13:38
by skrchnavy
Additional note to protecting instances in DB:

Lot of DB tables have field 'owner', that can be linked to recruiter (this is used to in filter 'show only my candidates').
We had an idea to extend this functionality for similar purpose as is in this thread.

* Recruiter is owner of candidate.
* Hiring manager is owner of job order. Hiring manager can see only candidates, that are in pipeline of job order (to review candidate if fits to job order).
* Only recruiter can assign candidate to job order pipeline.

This was not implemented because there were more advanced requirements for this, for example management of candidates if recruiter is ill, to invite managers to review process, ... so above was not enough for this requirement.
But if anyone can contribute with such code, I think it would be useful and doesn't require (I expect) change of DB schema. Implementation can be done conditional way, that is to be able to switch required checks on or off.

Sveto

Re: Access Permissions

Posted: 25 Feb 2018, 12:26
by manuel
Once upon a time there was this person who didn't want to join Opencats but started Candidats. I think his project is ... well ... hasn't got the attention what is needed.
When you look at his demo: http://auieoerp.com/demo/ and go to Settings and Administration you will notice he did a great job regarding permissions.
I think that it would be great to implement this in OpenCats. If it's difficult I don't know. Could somebody contact him.!?

Re: Access Permissions

Posted: 27 Feb 2018, 10:31
by RussH
manuel wrote:Once upon a time there was this person who didn't want to join Opencats but started Candidats. I think his project is ... well ... hasn't got the attention what is needed.
When you look at his demo: http://auieoerp.com/demo/ and go to Settings and Administration you will notice he did a great job regarding permissions.
I think that it would be great to implement this in OpenCats. If it's difficult I don't know. Could somebody contact him.!?
Hi Manuel,

unfortunately CandidATS does not want to work with the OpenCATS team. We've invited them along a few times.. after all, why duplicate effort? However we do have an acl and permissions system that works

Re: Access Permissions

Posted: 12 Jun 2018, 14:23
by gadalf
HI,
We want to use opencats for a group of companies.
We want to give each company a user name where they list job vacancies only to their company but none of the roles we tested works.
If we give any of the roles except read only the users can list jobs to all companies. They even can edit other companies jobs which is not very good.
If I give read only then assign this user as recuter of the job (listed by the administrator), this recuter does nothing just view, it cant even add candidates to pipeline.

Plz correct me if I am wrong