SCFWebProductization

Citizen Governance

Citizen Governance is based on definition of different types of users and applying corresponding permissions.

User Classification

For user classification we use Personas - fictional characters that represents corresponding specific type of user.

In SCF we operate using two types of personas:

Global Personas -have same permissions across organization, with some additional permissions necessary for development and support.
Subject Area Personas -have additional access to a subset of data specific to subject area (depends on the organizational structure - Departments, Divisions etc.)

Entra ID Groups

These personas shall be represented by corresponding Entra ID Groups

Permissions for Entra ID Groups

RBAC Permissions should be assigned to each Entra ID group. Below you can see RBAC permissions for default SCF personas/groups. Please note that some permissions on the diagrams below are for illustrative purposes.

Using custom scripts these can be extended to alternative approaches, for example, Group Names can be defined as combination of Department Name and Persona Name.