There are two types of the access rights: unconditional and conditional (i.e., triggered when the user is being allocated/dismissed to/from the task). The conditional access rights are applied only to those tasks where the user is allocated as assignee. It should be noted that not all permissions have the “conditional” option.
Below is a table of all the permissions that form access rights in Cerebro.
Working with tasks
Working with messages
Working with the universe
There are permissions that are applicable to the universe level only. For example, such as permissions as Salary Management and Managing users, groups and roles. These permissions apply only to the global properties of the universe. Alongside with those, there are permissions that may be applied either on the global or on the local level, such as Access Rights and Budget Management. These permissions, being applied on the global level, will be inherited (if allowed) by all subordinate levels (all projects and tasks within the universe).
Permissions are additive, that is, if a user members in several groups, each group with different permissions within the scope, the user’s resulting permission will be the sum (appositon) of all permissions available to these groups.