Sonderplan uses a cascading access control system, evaluated from a broad level down to more granular permissions.

If a user group isn’t granted broad module access, they won’t be able to bypass restrictions at more granular levels.

User Group Access to Scheduling Module

The User’s Group determines the permissions of group members to entire modules, with three possible access controls set for each module: No Access, Read Only, Read and Write. If a user group has Read Only permissions to the Scheduling module, then this applies to all bookings loaded on the Schedule and Booking table and cannot be overridden.

Workspace Access Permissions

Typically, Workspaces are usually created for each location or department, and each Workspace will contain a subset of the resources created within Sonderplan.

For example a company might have four workspaces setup, Sydney Post, Sydney Camera Dept, New York Grading, Berlin Post. In addition to resources, each workspace contains read / write access permissions defined per user and / or group.

In the above example, it might be desirable for the Sydney Camera and Post departments to view each others bookings, but they should not be able to create or modify bookings in the other Workspaces. Neither team should see New York Grading or Berlin Post, as these operate completely independently.

User groups with access to the Administrator Module will have read access to all bookings within the Schedule and Data Tables, however they won’t be able to create, edit or delete bookings unless they have been assigned Edit access to a specific Workspace

Limited & Private Projects

Projects may be set to “Private” and require Users and Groups to be added to the project team for access to the project. This setting also affects bookings added to those projects, and Users who do not have permission to the project will see bookings with anonymized name and notes.

User Resources

Users who are linked to a “Person” resource, are referred to as User Resources and these users can have additional access settings applied:

Schedule View Setting

This setting determines if User Resources are able to view only their own bookings, or see all other bookings (subject to the access permissions shown above). This is mainly used in education settings or when freelancers have been given read only access to the Schedule in Sonderplan and you want to restrict their access to only see bookings relevant to them.

Personal Calendar / My Bookings Table

User Resources are able to login to Sonderplan and see bookings they have been assigned as resources to. This is required so that they can track time directly on the booking and/or projects they are working on.

We recommend creating a new limited User Group (with no access to any Sonderplan modules), for users who only need to see and track time against their own bookings.