From b05f8d709d75a63d077f2a24e628ed81b7825628 Mon Sep 17 00:00:00 2001 From: tylerjmchugh Date: Mon, 25 Nov 2024 12:57:40 -0500 Subject: [PATCH] Documentation --- .../creating-group.md | 31 ++++++++++++++++--- 1 file changed, 26 insertions(+), 5 deletions(-) diff --git a/docs/manual/docs/administrator-guide/managing-users-and-groups/creating-group.md b/docs/manual/docs/administrator-guide/managing-users-and-groups/creating-group.md index 857df1f970d0..023f3d1429c3 100644 --- a/docs/manual/docs/administrator-guide/managing-users-and-groups/creating-group.md +++ b/docs/manual/docs/administrator-guide/managing-users-and-groups/creating-group.md @@ -17,12 +17,33 @@ To create new groups you should be logged on with an account that has administra 4. Click *Save* -Access privileges can be set per metadata record. You can define privileges on a per Group basis. +## Access Privileges -Privileges that can be set relate to visibility of the Metadata (*Publish*), data *Download*, *Interactive Map* access and display of the record in the *Featured* section of the home page. +Access privileges can be set on a per-metadata-record basis. Privileges define which actions are available to users in the group: -*Editing* defines the groups for which editors can edit the metadata record. +- **Publish**: Controls visibility of the metadata. +- **Download**: Grants access to data downloads. +- **Interactive Map**: Provides access to map tools. +- **Featured**: Displays the record in the *Featured* section on the home page. -*Notify* defines what Groups are notified when a file managed by GeoNetwork is downloaded. +Additional settings: +- **Editing**: Specifies which groups can edit the metadata record. +- **Notify**: Determines which groups are notified when a file managed by GeoNetwork is downloaded. -Below is an example of the privileges management table related to a dataset. +## Minimum User Profile Allowed to Set Privileges + +This setting allows administrators to control the minimum user profile required to assign privileges for a group. It provides enhanced control over who can manage sensitive privileges for users within the group. + +### Default Setting + +By default, the **"Minimum User Profile Allowed to Set Privileges"** is set to **No Restrictions**. This means that any user with permission to manage privileges for a metadata record can assign privileges for users in this group. + +### Restricted Setting + +When a specific profile is selected, only users with that profile or higher within the group can assign privileges. Users with lower profiles will have **read-only** access to privilege settings for this group. + +### Example Usage + +If a group has **"Minimum User Profile Allowed to Set Privileges"** set to **Reviewer**: +- Only users with the **Reviewer** profile or higher (e.g., **Administrator**) can assign privileges for users in this group. +- Users with profiles below **Reviewer** (e.g., **Editor**) will see the group as **read-only** in the privileges interface.