Roles are defined per workspace. A myDRE user can have different roles in different workspaces they are part of.
Roles are defined per workspace. A myDRE user can have different roles in different workspaces they are part of.
Workspace roles
Not every member in a workspace is created equal. Some have more and other have fewer permission. This is defined by the role they were assigned when they were invited to that particular workspace. It's important to know which standard roles there are, so you know what you can and cannot do with the role you were assigned in a workspace, and also so that you can make an informed decision on which role to choose when you are inviting others yourself. Let's see what workspace roles we have.
Accountable
The Accountable is the responsible person for the research study or project. Accountable will receive similar or the same rights as Privileged members, but will be responsible for the entire workspace. Accountable cannot be removed from the workspace, but the role can be reassigned.
Privileged member
Privileged member (formerly known as Owner) has the same privileges as Accountable. They are responsible for the research study or project and have therefore the most privileges in the context of the workspace. View the tables below.
Advanced member
Advanced member is a member who is able to upload data, submit data requests, and work in a virtual machine. In addition to working in a virtual machine, Advanced members are also able to resize the virtual machine. View the tables below for specific functionalities.
Standard member
Standard member (formerly knowns as Researcher) is able to upload data, submit data requests and work in a virtual machine. Functions that affect the data egress, costs, memberships, external access are disabled for standard members. View the tables below for specific functionalities.
Data contributor
Data contributor can upload data, and put in data requests, but they cannot connect to the VM. So they are not performing analyses within the VM, such as other workspace members can do.
Data reader
Data reader can view data in the Files overview and can submit data requests. Data reader does not have access to the VM.
These roles differ in their privileges. You can learn more about the differences in the overview tables below. When you start adding people to your workspace, it's wise to consider which roles they should have. The guiding principle should be to only give the least amount of access that is required. So ask yourself the question: should this person really be added in this role to the workspace?
Overview of capabilities per role
In the table below, you find an overview of all the capabilities per role. The roles are ordered from left to right: from least privileged to most privileged.
Remember that the roles are defined on the workspace level. This means that, as a myDRE user, you can be part of multiple workspaces, with different roles in each. So you may have requested a new workspace yourself, which makes you an privileged member there, and you may have been added to another as a Standard member. That's completely possible and even desirable.Dependent on the role that you fulfil within the studies corresponding to the workspaces, you should receive a fitting role in each workspace separately. Whether it's Accountable, privileged or regular Member.