Contact Us

ACL Permissions

Overview

Access Control List (ACL) permissions provide organizations with a more granular way to manage access to objects in Finout. This flexibility ensures that sensitive objects are accessible only to the intended users.

How ACL Permissions Work

ACL read and write permissions operate at the account level and at the object level:

Account Level (Coming Soon)

  • By default, ACL permissions are set to public for read and write at the account level.

  • Admins can change the default ACL permissions for the account. This determines the default permissions applied to all newly created objects that support ACL across Finout.

Object Level

  • All newly created objects inherit their ACL permissions from the account-level default settings.

  • Users with access to an object can override the account-level defaults by setting specific ACL permissions for that object.

    For Example: If your account-level ACL is private, you can override it when creating a dashboard by setting the ACL on the dashboard to public, allowing all account users to view it.

Permission Types

You can set read and write permissions as either Public, Private, or Shared.

Note: Write permissions must be as restrictive or more restrictive than read permissions.

ACL Types
Description

Public

Grants access to anyone in the organization that has Role-Based Access Control (RBAC).

Private

Grants access only to admins and the user who created the object.

Note: Admins always retain access.

Shared

Grants access only to specific users or groups that have Role-Based Access Control (RBAC).

Note: Admins always retain access.

Using ACL Permissions

Use Case - Change Default Account Permissions: You want to keep the default read permissions as public and change the default write permissions for the group "App Team" and for three users not in the "App Team".

  1. In Finout, navigate to Settings. The Account Settings tab appears.

  2. Under Permissions settings, configure the new default ACL permissions:

    1. Keep the Read permissions Public.

    2. Change the Write permission to Shared.

      Note: Write permissions must be as restrictive or more restrictive than read permissions.

    3. Add the Users and Groups that you want to have write permissions.

  3. Click Save. The permissions are updated and will apply to all newly created objects that support ACL.

    For Example: Any finanicial plan created in the account will get these read and write permissions by default.

Finout Features with ACL Permissions

FAQs

  • What are the default ACL permission settings? The default settings on the account level are public. Objects inherit their ACL permissions from the account-level default settings.

  • Can I apply write permission without applying read permissions? No, write permissions must be as restrictive or more restrictive than read permissions.

  • Do account-level default permissions apply to all objects in the platform? No. Default permissions apply only to newly created objects that support ACL. Existing objects remain unchanged when you update the default permissions.

PreviousList of Cross-Platform FeaturesNextSaved Views

Last updated

Was this helpful?