More Restrictive User Permission Level(s)

Product Suggestions
1

As our Tulip user base grows, and our use of diverse Tulip functionality is growing, we are finding that the minimum browser-based user role, “Viewer”, is not restrictive enough.

Most non-operator users, such as supervisors, managers, engineers, planners, and other support staff are not app builders but require basic features, such as dashboard/analysis and adding their phone number for SMS functionality. However, there is no role, nor the ability to make a custom user role, that restricts only these basic functions.

The following are our concerns:

Stations - Viewers are able to see station details for active stations, who’s logged in, their player screen, paired interface

Connectors - Viewers can see all connectors and connector functions, including SQL queries exposing database, schema, and table names of external systems.

Edge Devices - Viewers can see IP addresses of Edge devices

Apps - Viewers can test apps, especially hidden or locked steps/functionality they couldn’t otherwise navigate to on a player. Viewers can see trigger configuration.

Interfaces - Viewers can see all interface details. (Count, device type)

Tables - Viewers can see all table data.

Ideally, my suggestion would be to add the “Cannot View” option to all of the categories/sub-categories of the custom user role creation options.

At a minimum, my suggestion would be to have a role which can distinguish between the non-development related functionality and the development functionality in the browser instance.

2

Hi Wout, these are great points and definitely cover problems across multiple types of Tulip users. Question for you on the dashboard/analysis functionality- do you prefer to create your dashboards within apps, or use the native dashboards feature?

For example, if you make your dashboards within apps, this would become a lot easier for us to solve for.

3

Regarding dashboards specifically, we prefer the native dashboard feature, simply because it does not require a player setup/access for the user. However, our dashboard development for general users is minimal and for viewing we can use the link share functionality.

Dashboards are not too critical within the scope of my ask. The concern is more compartmentalization of the Tulip functionality . Someone we may want to have access to some table data, we may not want to have access to connector data. Someone we may want to have their phone number paired to receive text from a Tulip app, we may not want to see any apps, tables, connectors, etc. And so on…

4

Makes sense. We call that “asset level permissions” internally. I don’t have any good solutions at the moment, but we are planning on making improvements here in 2025.