Linking Users to Groups
User Access Control: Link User to Group
ℹ️
🔒 Security Impact
In simple terms, Link User to Group is the “Key Master” of your ERP. It allows the society secretary to decide which staff member or committee member can access which part of the system. This ensures that an Accountant can see money reports, but a Security Guard or Manager might only see the Notice Board.
âš¡ What is a “Group”? (Easy Explanation)
Think of your ERP like a secure building with many rooms:
- The “Finance” Room: Contains bank balances and vouchers.
- The “Master” Room: Contains member contact details.
- The “Report” Room: Contains society summaries.
Instead of giving every person a single key for a single drawer, we create a Group Key (like a master key for the ‘Finance’ room). You simply “Link” a user to that group, and they can open everything in that room.
ðŸ—ºï¸ How it Works: Step-by-Step
graph TD
U[Staff Member: Rahul] --> Link{Link to Group?}
Link -- YES --> G[Admin Group]
G --> R[Rahul gets full access]
U2[Member: Mrs. Gupta] --> Link2{Link to Group?}
Link2 -- YES --> G2[Member View Only]
G2 --> R2[Only sees own info]
style Link fill:#f9f,stroke:#333
style Link2 fill:#f9f,stroke:#333ðŸ› ï¸ 1. How to Link a User to a Group
- Access: Go to System Tools > Link User To Group.
- Find the Person: You will see a list of all names registered in the system.
- Add Roles: Click the Add (+) icon next to a person’s name.
- Choose the Group: Pick the category of keys you want to give them (e.g., “Accountant Group”, “Management Committee”, “Admin”).
- Save: Now, when that person logs in, their menu will change to only show the “rooms” they have access to.
🚫 2. How to Remove Access (Deny Roles)
If a staff member leaves or changes their job, you need to take away their “keys”:
- Select the View/Deny Roles icon (represented by an eye or checklist).
- Look at their current “Checked” roles.
- Uncheck any room or drawer you want them to stop seeing.
- Save: Their access is revoked instantly.
3. Why is this important? ðŸ“
- Privacy: You don’t want everyone to see how much money is in the society bank account.
- Safety: It prevents someone from accidentally deleting an invoice or a member’s record.
- Simplicity: Staff members feel less confused when they only see the buttons they actually need for their daily job.
4. Best Practices / Tips 💡
- Use Standard Groups: Try not to create custom rules for every single person. Instead, create 3 types: Admin, Accountant, and View Only.
- The “Eye” Check: Periodically click the View/Deny Roles button for all users. If you see someone with access they shouldn’t have, uncheck it immediately.
- Audit Requirement: During your annual audit, the auditor may ask for a “User Access List.” You can print the screen from this module to show that only authorized people have access to financial data.