Permissions

Data Sync Pro primarily utilizes Permission Sets as a fundamental mechanism for security control. This approach is supplemented with Custom Permissions and Sharing Rules, allowing for granular and flexible management of access rights within the system. This combination ensures robust security measures are in place to safeguard data and control user actions effectively.

Permission Sets

Here is the list of Permission Sets included in the Data Sync Pro package.

  • DSP: Data Sync Pro Administrator: grants "Modify All" access to all DSP objects, and includes all custom permissions within the DSP package. This is the master permission for Data Sync Pro.
  • DSP: Data Sync Pro App User: Provides users with access to the Data Sync Pro app, along with the ability to execute batch jobs and perform data uploads, provided they have at least Read access to Executable records through sharing.
  • DSP: Data Sync Pro Starter: Provides users with essential access to DSP package objects. When Executable(private) records are shared, users can access features such as Triggers, Record Actions, and Data Lists, but not Batch Jobs, Data Uploads, and the Data Sync Pro app.
  • DSP: Create Executables: Apply this permission set in conjunction with the "DSP: Data Sync Pro App User" to enable users to create Executables.
  • DSP: Download Data in Q: grants users the permission to download data from the Q component. This is just a permission set with the custom permission "DSP: Download Data in Q" enabled.
  • Permission Sets

Custom Permissions

Here is the list of Custom Permission included in the Data Sync Pro package. Add them to permission sets to grant users the appropriate accesses.

  • DSP: Access Q on Remote Connections: If a Connection is remote, the Q component operates under the context of the integration user. DSP users need this permission to run queries using the Q component from the Connection record page.
  • DSP: Download Data in Q: grants users the permission to download data from the Q component.
  • Custom Permissions

Post-Installation Sharing Rule

The Executable object in Data Sync Pro features a checkbox field titled "All Internal Users Have Read Access?". This field is integral for setting up sharing rules post-package installation(manual setup). When this field is activated, Executables are made accessible to all internal users. Given that Data Sync Pro Executables function as a rules engine in automations, record actions, and executable Q components, it is crucial for users to have read access to these Executables in order to utilize their features. After installing DSP, ensure to create the sharing rule as the below screenshot, and check the field for any Executables that need to be accessible to all internal users, thereby providing the necessary access.

Also note that if an Executable is enabled with automation, the "All Internal Users Have Read Access?" field is automatically set to true.

  • Post-Installation Sharing Rule