Dynamic Evidence security administration is relatively straightforward, and follows the standard Cúram security administration process (with a few caveats). Dynamic Evidence supports operation-level security; note that field-level security is currently not supported and is intended for a future major release.
Security Groups and operation Security Identifiers are generated when a Dynamic Evidence Type is created (see Create New Dynamic Evidence Type ). The Security Group Name specified on the Dynamic Evidence Type Create page is used to create a new Security Group specific to the new Dynamic Evidence Type. The generated Dynamic Evidence Type Security Identifiers are added to this Security Group.
One technical point of note: unlike other Cúram operation Security Identifiers (which are generated for modeled facade operations), Dynamic Evidence operation Security Identifiers are slightly different. There are no facade operations specific to each Dynamic Evidence Type in Dynamic Evidence (as Dynamic Evidence Types are defined at administration time, not development time). As such, all Case Evidence maintenance operations in respect of Dynamic Evidence Types are funneled through a single generic facade where the operation-level security is managed.
Because there are no real facade operations, the operation Security Identifier names are generated based on information from the Dynamic Evidence Type definition (see Security Identifiers and Security Groups ). Three Security Identifiers are generated for each Dynamic Evidence Type: one each for Create, Modify and View operations. These Security Identifiers are added to the Security Group created in respect of the Dynamic Evidence Type. The Dynamic Evidence Type Security Group and Security Identifiers can be managed via the Cúram administration application (see the Cúram Administration Guide for more information). Security Groups can be added to User Roles to give access rights for the maintenance of individual Dynamic Evidence Types.
A special security group named "EVIDENCEGROUP" can also be used to administer security for Dynamic Evidence Types. If this security group exists, all generated Dynamic Evidence Type Security Identifiers will be added to it i.e. This group is a placeholder for all Dynamic Evidence Security Identifiers. It is intended as a convenience group that can be used to grant access to all Dynamic Evidence operations at once (which is typically of great use in demo scenarios).