Permissions
Permissions in ERPNext establish the access level and control that users or roles have within the system. They prescribe what a user can do on various modules, documents, and records so as to provide secure and role-based access to business data.
Permissions can manage actions like creating, reading, editing, submitting, canceling, or deleting documents. They are also able to restrict access to particular records by various aspects like the user roles, document ownership or assigned fields.
ERPNext has a Role-Based Permission System, where specific permissions are assigned to each role (e.g., Sales User, Accounts Manager, Quality Manager) and users inherit the assigned roles. Extra limitations can be set at the field level, user level, or document level for exact access control.
From the recent version, permissions are more dynamic and allow advanced setups such as:
- Role Permissions Manager: Single point of control to manage permissions for a role on all types of documents.
- User Permissions: Limiting access for an individual user to certain records (e.g., only showing a salesperson those customers they have been assigned).
- Field-Level Permissions: Manually controlling edit and view rights of certain fields on a document.
- Shared Documents: Permitting temporary or selective access to users outside of their specified roles.
This permissions framework based on a structured approach protects data, guards against unauthorized activity, and allows organizations to apply internal policy and regulatory governance with operation efficiency.
- User Permissions
- Role Based Permissions
- Role Permissions for Page and Report
- Managing Perm Levels
- Field Level Permission Management