Roles and Permissions
A user's permissions to access and change data within the platform is controlled by their assigned roles. Most user roles are assigned at the organisation level, or at the project level. Users may have multiple roles.
System roles
| Role | Description |
|---|---|
| User | Grants basic system access. All users have this role. |
| Admin | Grants system-wide administrative permissions. |
Organisation roles
Organisations in the Trakka platform represent an institution or group which may submit and manage data, and manage their own users. An organisation may be, for instance, a public health laboratory.
A user can have multiple roles in an organisation.
In some cases, an organisation may approve roles for a user external to the organisation. This might be done, for instance, in order to allow specific users from another jurisdiction to contribute sequence data or sample metadata to the organisation, when one jurisdiction is carrying out sequencing of cases belonging to a different jurisdiction.
The roles available within organisations are:
| Role | Legacy name | Description |
|---|---|---|
| Member | None | This allows the user to see basic information about the organisation, and see other members of the organisation. A user will have this role by default in their home organisation. It grants no access to sample or sequence data. |
| Guest | None | Confers the same rights as Member, but may be granted in organisations other than the user's home organisation. |
| Viewer | Viewer | Grants the user visibility over all sample records and sequence file listings managed by the organisation, and over organisation event logs. This does not allow the user to download the sequence data files, only to list them. |
| Downloader | SeqViewer | Allow the user to list and download sequence data files, for all sequences managed by the organisation. |
| Uploader | Uploader | Allow the user to add, edit and share data owned by the organisation. This includes the ability to add new sample records, edit sample metadata, share sample records with projects, add new sequence data files, and disable/re-enable sample records and sequence data. |
| Contributor | None | Allows the user to transfer previously-uploaded data records from their own organistion to the organisation in which they have the Contributor role. This role confers no access or edit rights to the destination organisation's data. |
Project roles
Projects in the Trakka platform represent a collection of sample records, attached metadata, and analysis results including phylogenetic trees, together with tools for querying and visualising data.
A user can have multiple roles in a project, and be a member of multiple projects.
The roles available within projects are:
| Role | Legacy name | Description |
|---|---|---|
| ProjectViewer | Viewer | Grants the user visibility over sample records which have been shared with the project, and any of their metadata fields which have been approved for use in the project. Also grants visibility over project analysis outcomes, such as phylogenetic trees, visibility over project proformas, and allows the user to see other project members and their roles in the project. |
| ProjectContributor | Uploader | Allows the user to share sample records and associated sample metadata with a project, and to use proformas approved for that project. |
| ProjectAnalyst | ProjectAnalyst + SeqViewer | Allows the user to access sequence data files attached to samples shared with the project, and allows the user to upload project datasets containing additional sample metadata which will be visible only within the project, and to upload analysis results such as phylogenetic trees. |