Goal
To keep the stock scope simple for 3.1, the goal is to follow the pattern in Requisition to create similar Rights (permissions) that will be used by Stock in 3.1. This includes using the existing Requisition Groups, Supervisory Nodes, and applying facility-specific permissions. This wiki page was originally created to design that in response to ticket 
.
See the Role Based Access Control page for more background on the different types of rights and roles.
Rights and Roles
STOCK_INVENTORIES_EDIT (supervision type):
A user with this right can create a physical inventory and can submit a physical inventory within a specific Program and HomeFacility/Node. What we mean by "HomeFacility/Node" is that this right, just like any supervision type right, is assigned for a single Program along with either the users home facility or a supervisory node. If assigned for a Supervisory Node, the permissions apply to all facilities below that node in the hierarchy. The right only works with a single Program. So if a user should have permissions to conduct physical inventories for multiple programs, you would need to assign the right individually for each program to that user.
Applies to:
- POST /api/physicalInventories
- POST /api/physicalInventories/draft
- GET /api/physicalInventories/draft
STOCK_INVENTORIES_VIEW (supervision type):
A user with this right gets view permissions to view (and print) any submitted and past/historical physical inventories with a specific Program and Node. This right does not give users the ability to view drafts.
Applies to:
- GET /api/physicalInventories (IF Stock 3.1 includes this endpoint to provides views of historical physical inventories)
STOCK_ADJUST (supervision type):
A user with this right can make a stock adjustment, potentially altering the SOH, for any Orderable that is part of a specific Program and HomeFacility/Node.
Applies to:
STOCK_CARDS_VIEW (supervision type):
Can view all the stock cards and line items for any Orderable that is part of a specified Program and HomeFacility/Node.
Applies to:
- Viewing the stock card with all its line items, including all historical line items, and printing
- Viewing and printing an SOH summary showing a stock card's SOH
STOCK_CARD_TEMPLATES_MANAGE (admin type):
Can configure the stock card template.
Applies to:
- Configure the stock card template (a global template that applies for all programs)
.
STOCK_SOURCES_MANAGE and STOCK_DESTINATIONS_MANAGE (admin type):
Can configure the valid sources and destinations for all programs/facilities in the system.
Assumption: since this functionality is not in v3.1 scope, it may be removed or disabled before release.
STOCK_CARD_LINE_ITEM_REASONS_MANAGE (admin type):
Can configure the reasons, including which reasons map to which facilityTypes and programs.
ORGANIZATIONS_MANAGE (admin type):
Cane configure the list of outside organizations.
Assumption: since this functionality is not in v3.1 scope, it may be removed or disabled before release.
If this is kept for v3.1 release, please rename this right to STOCK_ORGANIZATIONS_MANAGE.
Rights to Remove
A handful of STOCK_* rights are already built into the bootstrap data, but we suggest removing them for 3.1:
- STOCK_SOURCES_VIEW (see No Permissions Checks section below)
- STOCK_DESTINATIONS_VIEW
- STOCK_CARD_LINE_ITEM_REASONS_VIEW
- STOCK_EVENT_CREATE: Events are a concept under the hood. But Adjustments and Physical Inventories are the "nouns" that users can act on via the API. We don't want the concept of an "event" to have its own right(s).
No Permissions Checks
These endpoints will be visible to all logged-in users (no rights need to be checked other than a valid login token):
- GET /api/organizations
- GET /api/stockCardLineItemReasons
- GET /api/reasonCategories (or reasonTypes)
- GET /api/validReasons
- GET /api/validDestinations
- GET /api/validSources
NOT in v3.1
- Creating a Stock Card: This is not a right, because we expect the system will create a stock card on-the-fly on an as-needed basis. This might happen during a physical inventory, or even while recording an adjustment. The other rights cover those cases. For example, if a user can adjust stock for Program A at Facility Z, then their activities in the system can also result in creation of a stock card at A and Z.
- Editing a Stock Card: This is not a right, because currently there is nothing to edit. The stock card has no fields other than its identification as a combination of a Program, Product (Orderable) and Facility. It also has Line Items, but those are covered above.
- Issuing and Receiving: There are not specific rights for this. We may decide in the future to create a new right when this functionality is added.
- Receiving by POD: (also not in scope yet)
Open Questions
- Do we need any other mechanisms for users to see across multiple programs? or across multiple facilities? The scheme would require assigning multiple rights if the user needed permissions to multiple facilities. The scheme above would involve using supervisory nodes to give permissions to multiple facilities (any section of the supervisory hierarchy).
- Proposed Answer: This is good enough for now. It is a little clunky, because there is no way to say "assign this user for ALL programs at Facility X". But that's okay.
- We are not sure if some existing code has endpoints that are were removed from scope during the workshop. For example, the stock card template feature was already built, and there is an endpoint for it, but we are not sure if it is in scope for v3.1 or not. Another example is the valid destinations endpoint, which is only needed for Issue/Receive functionality.
- Proposed Answer: Remove the endpoints from the RAML before the release. That way they will not be registered by Consul. The code will be there (in Java source), but nobody can hit those endpoints.