Groups

in swimlane turbine, groups serve as collections of users with shared permissions, roles, and access levels, allowing administrators to manage access and permissions efficiently across multiple users each user can belong to several groups simultaneously, which is particularly useful for organizing users by department, role, or specific project needs by managing permissions at the group level, organizations enhance security, streamline onboarding and offboarding, and ensure consistent access control across departments, projects, and workflows, ultimately saving time and improving collaboration how groups work each user can belong to single or multiple groups simultaneously, making it easy to organize users based on department, role, or specific project needs this flexibility supports dynamic roles and cross functional team structures key benefits enhanced security permissions are managed at the group level, ensuring users have access only to relevant resources and workflows streamlined onboarding and offboarding adding or removing users from groups automatically applies the appropriate permissions, simplifying user lifecycle management consistency and efficiency group based management ensures consistent access control across departments, projects, and workflows while reducing administrative overhead access the groups page to access the groups page, navigate to the admin panel and select groups create a new group administrators can create new groups and also access users and roles from the icons on the user page taskbar to create a new group enter the group name in the name field, enter the group name provide a description (optional) in the description field, describe the group's purpose or scope select roles under roles, choose one or more roles to assign to this group add users and groups if needed, add existing users and groups by selecting them from the users and groups dropdowns note the groups and users you want to add must already exist in the system to appear in these lists save the group click save to create the group managing groups once a group is created, you can perform various management tasks edit a group click on the group name to change the description, roles, associated users, and nested groups disable a group toggle the disabled switch next to the group's name to deactivate it temporarily delete a group click the delete icon (represented by a trash can) to permanently remove the group sorting groups to sort groups alphabetically, click the name column header in the groups list primary groups while users can belong to multiple groups, primary group serves as the main, or default, group for a user it is essentially one of the assigned groups designated as the user’s primary group this designation may carry additional significance in terms of priority or default permissions for example the primary group might determine the default access rights when there are overlapping permissions or restrictions among the user’s groups it could be used in reporting or tracking to associate a user with a single group for organizational clarity some systems may apply specific settings or restrictions primarily based on the user's primary group, impacting default resource access or actions within the platform current primary group the logged in user is referred to as the current user, and their associated group is designated as the current primary group while the current user may belong to multiple groups, assigning a primary group ensures clarity by identifying the main group in the search filters, when filtering by the "user groups" field, both the current user and their current primary group are displayed by applying these filters, users can quickly access records relevant to their own activity or group involvement nested groups swimlane turbine supports nested groups, where a top group acts as a parent, with additional groups (e g , group 1 and group 2) serving as child groups this setup enables specific access rules for each group within the hierarchy role and restriction inheritance parent to child inheritance roles and restrictions assigned to a parent group automatically apply to all members of its child groups child to parent isolation members of a parent group do not inherit any roles or permissions from its child groups this means members of the top group do not automatically gain access to resources restricted to group 1 or group 2 record restriction rules restrictions can be applied to specific groups within the hierarchy to control access as follows restricting to top group records restricted to the top group are accessible by all users in the top group, group 1, and group 2 restricting to group 1 records restricted to group 1 are only accessible by users in group 1; users in the top group and group 2 are excluded restricting to group 2 records restricted to group 2 are only accessible by users in group 2; users in the top group and group 1 are excluded this hierarchical approach ensures access is controlled and restricted according to each group’s designated permissions within the hierarchy restricting records to the top group grants the broadest access across all groups, while restricting to a specific child group limits access accordingly