Authorized User Policy
The Authorized User Policy is used to assign precise permission policies to users, controlling their access scope to system resources and operations.
Note: Permission policies generally include the following core elements:
- Operation Permissions: Specific actions allowed (e.g., view, edit, delete)
- Resource Scope: Accessible data or functional modules
User Guide
1. Access the Authorization Management Interface
- Navigate to
Global Management → Organization & Personnel → Users - Click the Name of the target user to enter the details page
- Switch to the 「Authorization Policy」 tab
2. Manage Permission Policies
2.1 View Existing Policies
- The list displays all authorized policies
- Each row includes: Policy Name, Policy Code, Authorization Source, Authorizer, etc.
2.2 Add a New Policy
- Click the 「Authorize」 button in the upper-right corner
- Select the target policy from the policy library
- Click 「Confirm」 to complete authorization
2.3 Remove a Policy
- Locate the target entry in the policy list
- Click the 「Revoke Authorization」 button on the right
- Permissions are revoked immediately
Key Rules Explanation
1. Permission Inheritance
- Users automatically inherit all policies from their user group
- Department administrators inherit the Department Management policy
2. Effective Timelines
| Change Type | Effective Time |
|---|---|
| Add Policy | Takes effect at next user login |
| Remove Policy | Takes effect at next user login |
| Modify Policy | Takes effect immediately |
⚠️ Security Restrictions:
- Cannot add policies to oneself
- Cannot assign policies exceeding one's own permissions
- High-risk policies (e.g., delete permissions) trigger email alerts