Exclude User Groups from Authorization

 

---

 

Background

Previously, users in a group without defined authorization automatically had access to all modules. This resulted in undesired access when groups were intended solely for functional management, such as notifications or tasks. With this update, it is possible to create groups that fall outside the authorization model, so they do not acquire rights without explicit configuration.

 

Configuration

The option 'Exclude from Authorization Management' has been added to the User Groups module. By checking this box, you determine whether a group is excluded from authorization. This checkbox can be ticked for all groups except group 1. By default, the checkbox is unticked.

 

Usage

If you want to create a group solely for notifications or tasks, create the group and check 'Exclude from Authorization Management'. The group will then have no rights within MKG and thus will not automatically gain access to all modules.

 

Considerations

• The option 'Exclude from Authorization Management' is not available for the default user group 'All' (group 1).
• If you exclude an existing group from authorization, the authorization settings previously applied to this group will no longer be effective. If later you wish for this group to be part of the authorization again, the previously configured authorization for this group will become active once more.