In addition to Admin and User default roles, SDL Trados Business Manager has a predefined role called Vendor.
This role should be assigned to all user accounts created for vendors who will be able to access their area on the web-portal. In addition to a role, Associated vendor field must be filled for such users. By default, Vendor role allows vendors to:
- Change own password for accessing a portal
- View and edit own profile (vendor editing form - full access is provided to all fields, including prices and languages; while editing, a vendor can select Units, Languages, Work types, Software applications contained in the database)
- View their assignments (with status, language pair, PO number, date, deadline, amounts, due and paid amounts, instructions, etc.)
- Partially deliver assignment (with possibility to attach up to 5 files)
- Fully deliver assignments (with possibility to attach up to 5 files)
- Register invoices over delivered assignments (with possibility to attach invoice file)
- View Vendor performance QuickReport
Translators cannot edit assignments. They only can change status of assignments by clicking Delivery or Register invoice buttons. After registering an invoice delivery buttons and invoice creation buttons become disabled.
You are fully free to change default permissions defined in the Vendor role. However, if you unintentionally remove permissions which are mandatory for correct working of a vendor's portal, then application will automatically return these permissions after clicking Save button in the role editing window.
Below you will find explanation of every permission setting in the Vendor role.
Type permissions
While navigation permissions control contents of the navigation tree and do not control access right to actual data, type permissions serve exactly for this - to define a data allowed/denied to be read, written, created or deleted by users with this role. By default access to all data is denied in Vendor role:
This means that even if navigation permission allows to open translation assignments list, attempt to do this will lead to fully empty list of assignments, because it is not allowed to read (nor write, create and delete) and data. So, the task of Type permissions table is to define what is allowed to read/write/create/delete. In this list you can see what is allowed by default in the Vendor role:
Type | Read | Write | Create | Delete | Member permissions | Object permissions | Notes |
---|---|---|---|---|---|---|---|
Role | Deny | ||||||
User | Allow |
Change password on first logon Criteria: [Oid] = CurrentUserId() Allow write Stored password Criteria: [Oid] = CurrentUserId() Allow write |
x |
Needed to allow user to change own password Read permission for all users is needed to determine users for sending notifications |
|||
Application setting | Allow | Allow | Write permission for application settings - internal temporary data is stored in this table | ||||
Country | Allow | ||||||
Currency | Allow | ||||||
Dashboard |
[Title] = 'Vendor performance' Allow read |
Allows to view only one QuickReport named 'Vendor performance' |
|||||
Document checklist item |
[Assignment] Is Not Null And [Assignment.Vendor.Id] = CurrentUserVendorOrClientId() Allow read and write |
Allows vendors to mark checklist items as done before delivering an assignment | |||||
File attachment | Allow | Allow | Allow | Deny |
To deliver files and invoices |
||
File data | Allow | Allow | Allow | Deny |
Linked with File attachment table |
||
File type | Allow | Allows to view file types | |||||
Fuzzy type Fuzzy scheme Fuzzy scheme item |
Allow | Allows to read information from fuzzy schemes | |||||
Invoice incoming Invoice incoming item |
Allow | [Vendor.Id] = CurrentUserVendorOrClientId() | Allows to create invoices with own vendor value. | ||||
Language | Allow | Allow | |||||
Language pair | Allow | Allow | |||||
Model difference Model difference aspect |
Allow | Allow | Allow |
Used to store individual user settings (column in tables, etc.) |
|||
Notification | Allow | Allow | Allow | Allow |
Needed to send notifications to users |
||
Payment outgoing |
[Vendor] Is Not Null And [Vendor.Id] = CurrentUserVendorOrClientId() Allow read |
Allows to view own payments | |||||
Report | Allow |
Needed for viewing reports |
|||||
Settings | Allow |
Read application settings |
|||||
Software application | Allow | ||||||
Specialization Specialization category |
Allow | Read reference data | |||||
Tax | Allow | ||||||
Translation assignment | Deny | Deny | Deny | Deny |
1. Criteria: [Vendor.Id] = CurrentUserVendorOrClientId() 2. [Vendor] Is Null And [Vendor pickup][[Vendor] Is Not Null And [Vendor.Id] = CurrentUserVendorOrClientId()] Allow read and write |
Criteria sets rights on reading and writing only those assignments which are created for logged in vendor, as well as assignments offered to a vendor |
|
Translation assignment candidate | Deny | Deny | Deny | Deny |
[Vendor.Id] = CurrentUserVendorOrClientId() Allow read and write |
Explicitly deny access to Translators pickup tab in assignments, but allows to accept and decline assignments |
|
Translation job task |
Fuzzy type; Unit; Work type |
Needed to allow to view fuzzy type, unit and work type in assignments, because tasks in assignments are based on job tasks |
|||||
Unit | Allow | Read reference data | |||||
Work type | Allow | Read reference data | |||||
Vendor | Deny | Deny | Deny | Deny |
Criteria: [Id] = CurrentUserVendorOrClientId() Allow read and write Allows to read and write only logged in vendor |
As you see, two functions were used in the Object permissions column: CurrentUserVendorOrClientId() and CurrentUserId().
CurrentUserVendorOrClientId() function returns Id of a vendor or customer which is linked with a logged in user. This vendor or customer is specified in the Associated vendor or Associated customer in the Users table.
CurrentUserId() function returns Id of the logged in User.
Let's check criteria used to access translation assignments:
Criteria: [Vendor.Id] = CurrentUserVendorOrClientId()
Read, Write, Create and Delete properties are not set. This means that it is denied to access translation assignments table. But in the Object permissions table a row is created which allows to read and write assignments which meet provided criteria. And this criteria sets that Id of a Vendor selected in assignment must equal to Id of a currently logged in vendor.
Visual designer can help you to build this criteria, but you have to manually type name of a function after equity symbol: CurrentUserVendorOrClientId().
By modifying Vendor role you can provide more rights to your vendors or for individual vendors (in this case, Criteria property will look like [Vendor.FullName] = 'Peter Blake').