Object Privileges
Object privileges are used to grant specific users access to specific objects. Unlike system privileges, object privileges are only valid for one object. Object privileges require the Security.Module which is specified in a license key. You know you have object privileges when you see a Security tab on repository objects, like job definitions, for example.
The following basic object privileges are available for most objects:
- View
- Edit
- Delete
Some Objects have additional privileges, for example, two more object-specific object privileges exist for processes:
- Submit
- View Processes
Object privileges can be granted with the Access or Admin option; the Admin option allows the grantee to grant the privilege on to other users. Object privileges cannot be granted directly, you grant ranks of privileges. For example, the Edit rank contains both View and Edit privileges, this prevents human error, as you need to see an object before you can edit it.