Chapter 5 Configuring Access Control for a Project : Resource Types and Corresponding Action Types

Resource Types and Corresponding Action Types
For each type of resource, you define permissions for the action types available for that type of resource, as shown in Table 9:
read, add_impl, del_impl, invoke
add_impl enables a user to add decision table implementations.
del_impl enables a user to delete decision table implementations for VRFs.
The permission applies to the properties of the specified resource or resources.
The permission applies to domain models in the specified resource or resources.
The permission restricts what decision tables a user can view in the project explorer. (Other permissions for decision tables are set on the resources used in the decision table.)
This resource type applies to actions taken at the project level (and not to all resources within a project).
Users see only the functions for which their role has invoke permission. Validation errors are thrown if other functions are written manually.