Setting Up Permissions

The major reason for setting up clients and departments is to use them for access control. FogBugz allows you to set up permissions (access control) so that only certain users can see or modify certain cases. Before you can start assigning permissions, you need to create at least one client or department.

Typically, you will use FogBugz access control for one of two purposes:

• Hiding clients from each other

• Limiting users to their own department

If you have multiple external clients, you can give them all accounts on your FogBugz database without letting them see each other's cases or even know about each other. When your client logs on to FogBugz, they will only be able to see cases associated with their projects, not with the projects of other clients. They won't even be able to find out about the other clients: they will have no way of seeing cases, users, or projects unless you specifically grant them permission (assuming you set things up correctly, that is).

Similarly, if you are using a single FogBugz installation for multiple departments, you can set things up so that users only have permission to see cases in their own department.

FogBugz will give a particular user permission to access all the cases associated with one or more clients or departments. This means that before you can start assigning permissions, you need to follow the procedures I discussed earlier in the chapter to create clients or departments, and then assign projects to the appropriate client or department.

■Caution Permissions are only useful if you require passwords to log on to FogBugz. See Appendix A for details on the password options of FogBugz. If you don't set passwords, anyone can log on as any user, which defeats the purpose of permissions.

0 0

Post a comment