Skip to main content

Roles Administration

Roles define sets of permissions within TestPlanIt, controlling what actions users assigned to that role can perform (e.g., creating projects, editing test cases, managing users). This section covers how to manage these roles.

To access this page, enter the Administration area and select Roles from the left-hand navigation menu.

Viewing Roles

The Roles page displays a table listing all defined roles (excluding those marked as deleted). Key features include:

  • Filtering: Use the filter input to search for roles by name.
  • Pagination: Navigate through pages of roles if the list is long.
  • Columns: The table includes columns for:
    • Name: The name of the Role.
    • Default: A switch indicating if this is the default Role assigned to new users. Only one role can be the default.
    • Actions: Buttons to Edit or Delete the Role. (The default role cannot be deleted).

Adding a New Role

  1. Click the Add Role button located above the table.

  2. A modal dialog will appear.

  3. Enter a unique Name for the new Role (e.g., "Tester", "Test Lead", "Read Only").

  4. Use the Default switch to designate this role as the default for new users. If another role is currently the default, setting this will automatically unset the default status for the other role.

  5. Click Submit.

    Permissions Note

    Currently, the specific permissions associated with each Role are predefined within the application's codebase and are not configurable through the UI. This section only allows managing the Role names and the default assignment.

Editing an Existing Role

  1. Locate the Role you wish to modify in the table.
  2. Click the Edit (pencil) icon in the Actions column.
  3. A modal dialog will appear. You can modify:
    • Name: Change the name of the Role.
    • Default: Change the default status (cannot be unset directly if it is the current default; set another role as default instead).
  4. Click Submit.

Deleting a Role

Deleting a role marks it as inactive. Users currently assigned to the deleted role will be automatically reassigned to the Default Role.

Important

You cannot delete the Default Role. To delete the current default, you must first designate another role as the default.

  1. Locate the Role you wish to remove in the table.
  2. Click the Delete (trash can) icon in the Actions column. The button will be disabled if the role is the default.
  3. A confirmation dialog will appear, warning that users will be reassigned to the default role.
  4. Click Confirm Delete to confirm.

Roles

Roles define the permissions users have within the application and specific projects. TestPlanIt comes with predefined system roles, and administrators can create custom roles to fit their organization's needs.

System Roles

  • Admin: Full access to all application settings and all projects.
  • Project Admin: Full access to administrative functions for a project to which the user has access.
  • User: Default role for new users. Can view and interact with projects they are assigned to, based on the project-specific role assigned to them.
  • No Access: The user's access to the system is revoked. The user can log in, but not interact with any projects.

Custom Roles

Administrators can create custom roles under Administration -> Roles. This allows for granular control over what users can do.

Project Permissions and Application Areas

When a user is assigned to a project, they are also assigned a project-specific role for that project. This role determines their access level within different functional areas of the project, known as Application Areas.

Application Areas

Application Areas defined in the system include:

  • Documentation: Creating and editing project documentation.
  • Milestones: Creating, editing, and deleting project milestones.
  • Test Case Repository: Creating, editing, deleting, and organizing test case folders and test cases.
  • Test Case Restricted Fields: Editing restricted field values on test cases.
  • Test Runs: Creating, Editing and Deleting active test runs.
  • Closed Test Runs: Deleting completed/archived test runs.
  • Test Run Results: Recording and managing results for test cases within a run.
  • Test Run Result Restricted Fields: Recording restricted field values on test run results.
  • Sessions: Creating and managing active test sessions.
  • Sessions Restricted Fields: Recording restricted field values on test sessions.
  • Closed Sessions: Deleting completed/archived test sessions.
  • Session Results: Recording and Managing results for test cases within a session.
  • Tags: Creating new tags.

Each role defines specific permissions (e.g., Add/Edit, Delete, Complete) for these areas.

Example: A "Tester" role might have Add/Edit permissions for TestRunResults and SessionResults but not for TestCaseRepository and Milestones.

The specific permissions granted by each role are configured when the role is created or edited in the Administration -> Roles section. When viewing different parts of a project, the UI will adapt based on the user's permissions for that specific Application Area (e.g., hiding "Edit" or "Delete" buttons, disabling drag-and-drop).

Effective Project Permissions Hierarchy

A user's final permissions within a specific project are determined by a hierarchy, ensuring the most specific assignment takes precedence:

  1. User-Specific Project Role: If a user has been explicitly assigned a specific role for that project (via Project Settings -> Members -> User -> Edit), that role's permissions are used, overriding all other settings.

  2. Group-Specific Project Role(s): If the user hasn't been assigned a specific role directly, the system checks the groups they belong to. If one or more of their groups have been assigned a specific role for that project (via Project Settings -> Members -> Group -> Edit), the role providing the highest level of access (most permissions) among those group assignments is used.

  3. Project Default Role: If neither the user nor their groups have a specific role assigned for the project, the system checks the project's Default Access Settings (in Project Settings -> General):

    • If the default access is set to "Use Specific Role", the role selected as the project's default role is used.

  4. User's Global Role: If none of the above apply (e.g., the project's default access is set to "Use Global Role"), the user's global role (assigned in Administration -> Users) determines their permissions within the project.

  5. No Access: If the project's default access is set to "No Access" and the user hasn't been granted access via steps 1 or 2, they will not have access to the project.

This hierarchy allows administrators flexible control, from broad default access based on global roles to highly specific overrides for individual users or groups within particular projects.