Manage Roles and Permissions

Manage roles and permissions.

Firstshift allows configuring different roles and permissions based on the customer’s requirements at the application level. The customer admin role has full access to the application, including managing users, roles, and permissions, managing data access for the users, and all the functionalities within the application.

Typical Customer admin roles include

• Full access to all system features and settings.

• Can create, edit, and delete other users and roles.

• Has access to all planning data and can create forecasts, plans, reports, etc.

• Can configure system-wide settings and trigger workflows.

Permissions Model

Permissions are typically defined at various levels to ensure precise control:

1. Module-Level Permissions

   • Customer admin can control the role permissions at the module level. Module here includes

     1. Forecast Management, 

     2. Demand Planning

     3. Inventory Planning,

     4. Product Life Cycle Management

     5. Data management

     6. Dashboards

     7. Analytics

     8. Administration

     9. Workflow Settings, etc.

2. Feature-Level Permissions

   • Based on the specific role, the Customer admin can control different features within a module. For example, the demand planning module can have different features, like

     1. Create and manage specific planning view (say only sales plan)

     2. Create and manage Segmentation

     3. Access to specific dashboard access, etc.

     4. Access to specific time series (View, Update)

     5. Access to trigger only specific workflows.

3. Data-Level Permissions

   • Control data access for each user/planner.

   • Data access includes access to specific datasets or records within the system, such as product lines and regions.

4. Action-Level Permissions

   • Controls what actions a user can perform on the data, such as viewing, editing, deleting, or creating records. The following are a few sample actions

     1. View and update time series data

     2. Create, edit, and delete plans

     3. Create, Run, and Compare Forecast

     4. View and Run workflow settings

     5. Upload and Delete data.

Screenshot 1: The list of roles configured. 

Note: Firstshift prepopulates standard roles while setting up the tenant. However, based on the Tenant’s requirements, the prepopulated roles can be deleted and replaced with Tenant-specific roles.

Screenshot 2: Configure the permissions for each role

This is the screen where the customer admin can provide feature, module and action permissions to the role. 

Screenshot 3: The expanded view for the Measure permissions where the role can have a view or Edit permissions for each time series.