It is sometimes useful to allow customer access to an internal Rational® ClearQuest® database to view records associated with their issues, submit new issues, and view other relevant public information. At the same time, it is important that the customer users at one company not see another company's information.
In this scenario, each user at a customer company has their own Personal Queries folder in an internal company database. There is also one folder in the Public Queries folder that all users at the customer company share.
The Security Administrator performs the following steps.
Result: Customer users who are members of CompanyAUsers can see their Personal Queries folder and CompanyAFolder, including the contents of each folder. If the customer users have Read-Write permission on CompanyAFolder, they can also create and modify items in this folder, including the subfolders.
In this alternate workflow, customer users are separated into two groups: one containing general end users and another containing end users who have permission to administer the company folder, CompanyAFolder. The general end users have Read-Only access to CompanyAFolder, while select users have Read-Write access.
The Security Administrator performs the following additional steps:
Result: Users who are members of CompanyAAdmin can modify the contents of CompanyAFolder, while those who are only members of CompanyAUsers cannot.