Custom Administrator Permissions - to define new admin roles and access permissions depending on an organization needs
Currently there are set administrator "roles." If an organization's administrators don't fall neatly into these roles, then they end up with either too many or not enough permissions. It would be nice to be able to customize administrator roles, and determine whether that type of admin has full access, read-only access, or no access to all of the items described in the tables on the Site Administrators help page. I.e. A page to create/edit a role with radio selection to determine access for that role for each feature of the site. This would be immensely helpful for reducing clutter for administrators that don't need to see certain features and menu tabs. http://help.wildapricot.com/display/DOC/Managing+site+administrators
Andrew Steele
shared this idea
70 comments
-
Scot McConnachie
commented
Since there currently is no means of members having an ability to edit just their own complex events, we decided to use the honor system to encourage members to not edit others’ evens. We started to give them all Event Manager privileges....until we realized that the Event Manager could see all contacts, the detailed financial data of all members, and all of our organization summary financial reports. That was way too much information!
The granularity of administrative functions needs to be drastically increased. Since this granularity defines workflows it is a higher priority than most users realize.
-
Jean-Claude Gavrel
commented
Absolutely! We are a Newcomers Club with over 25 group leaders that need only very narrowly defined access to create/monitor events and send group emails. They only serve for one year and therefore only have limited training. The risk of them damaging other parts of the system is quite high and we need their access restricted.
-
Barbara Belon
commented
Another vote for customizable administrator roles! Totally agree that it is a matter of way too much access for my administrator that is in charge of only a subset of the members (easily identifiable via member Level).
-
Gaby Priolo
commented
Allowing access to Membership details is too much access for administrators we want to manage only a particular member level. It would be great to be able to assign admin rights to specific levels and groups without compromising the entire data. Privacy is an issue at the moment.
-
Warren Marshall
commented
this is exactly what the client requires at the least the ability to create another type of administrator that we could configure the same way as can be done with someone who does not have full administrator access. eg same as an event administrator but different name/handle. Perhaps "member level manager" to manage contacts but not with access to see all the attributes of a contact that a full administrator can see.
-
Robert Sylvester commented
Make Read-only access, read only. The fact that they can export the entire contact and membership lists is troubling.
They're also allowed to preform searches, make or delete (existing) saved searches.
Oddly enough, event and donation managers can't see the members panel, so in some ways read-only has more rights.
-
Having a read only admin able to download the entire database, isn't read only. Can this be fixed?
-
Anonymous
commented
Too many people with full admin rights can cause problems if one turns rogue. We have experienced this in the past where we had the complete site deleted. This was a major headache as WA do not keep a backup of the complete site.
The way around this, is of course, to be able to give people individual admin rights to manage their section of the site.
This will also give better control of the business of the association. Enabling the various Group Leaders to better manage their Group requirements. This without the potential to damage the whole site.
-
Anonymous
commented
Member Groups.
We have some +30 different Activity Groups within our Association. We wish the Leader of each Group to not only edit their individual site pages but also to email their individual Group members about upcoming activities
The restricted access system allows you to give the access to one or more of the Group pages. There does not appear to be a selection for emailing Group members.
At the moment my work around is to also give access to Event Management. In light of GDPR and allowing access to Membership details. This is too much access.
Any thought or recommendations or way forward, gratefully received. -
Walt Bilofsky
commented
Can you at least move Account Administrator (Read-only access) from the radio buttons down to the multiple choice Limited administrator list, where it belongs?
I tried to give my Treasurer the maximum access to financial information, which is the not quite applicable Donation Manager, and then let him do Quickbooks downloads by also checking Account administrator (Read-only access). Quickbooks downloads is only available to Full and Read-only admins.
But you don't let me give him both!
It beggars belief that if the Treasurer is to be able to change any financial data and do Quickbooks export, I have to give him full admin access. I hope I am misreading the documentation on this.
-
Walt Bilofsky
commented
Good idea, Evgeny.
For those interested in following that public Roadmap discussion, the new thread is https://forums.wildapricot.com/forums/308932-wishlist/suggestions/35539993
-
AdminEvgeny Zaritovskiy
(VP Technology of Wild Apricot by Personify, Wild Apricot by Personify)
commented
@Walt, Robin - I have deleted your comments on Public roadmap from here and moved them to a separate new thread.
-
Richard Poling
commented
The site administrator having the capability to create customized settings for additional administrative categories would solve the problem that I also voted for in suggesting the creation of a Communications manager category in another section of the Wishlist Forum. Being able to customize the access to various tasks would be great, especially in the case of such positions as newsletter editors, committee chairs, etc., who shouldn't have access to other areas or functions of the website.
-
AdminEvgeny Zaritovskiy
(VP Technology of Wild Apricot by Personify, Wild Apricot by Personify)
commented
No updates so far. This is less about difficulty, more about our priorities - we focus on other things now. We have it in our list of candidates for next year, but it does not mean we will actually implement it.
-
Anonymous
commented
@evgeny zaritovsky
Any updates on this 'wish'? This seems to be one of the most wished for features and is now several years old. Is there something particularly difficult in implementing it? My situation is, I guess, similar to many other peoples. We need an admin who can view member information (read only, not create) but also edit a single page on the site. A combination of 'read only' & 'website editor'.
-
Mary Adams
commented
Just want to emphasize that read only access comes with the ability to download the ENTIRE CONTACT DATABASE. This creates HUGE issues for our terms of service which says we won't share our contacts' data. It's impossible to police every volunteer who has access to the system. I was thrilled when WA took off the limits on the number of admins but we can't use this until the download issue is solved. I love WA. Please fix this!
-
Mary Folsom
commented
We have 42 event managers, of varying degrees of competence, and are constantly in Damage Control when they do things like update the default event email reminder template instead of their own. Our new Damage Control involves taking dozens of names off Google search results, because someone checked the "show registrants to Public" box, in contrary to our policy. We really need this function.
-
Bob Hart
commented
Add to the Membership Manager's functionality the ability to do event "check in". But not duplicate the event manager's over all functions.
In our organization the Membership Manager servers as the greeter for most of our social events and wants to take attendance electronically and do away with paper forms for check in. Along with this she would need to be able to "add registrant" for walk ins as not everyone will have RSVPd in advance. -
Randy Rensch
commented
While we, too, want to provide certain Members with very restricted access (e.g., an Event Organizer gets access to data for only their event, possibly even read-only), here's a solution to one issue mentioned here:
> to give the front desk person the ability to see if someone is a member
Apparent solution: Create a web page that lists Members. The list is based on an Advanced Search that you create. Members' preferences can be selectively set up so that a Member's option to be hidden on that list (or to hide any particular profile data) is disabled.
-
Anonymous
commented
Our organization is also seriously discussing to replace Wild apricot due to unavailability of add/edit/delete and view permissions feature.
