Groups are used to organize your Appian users, and can contain both user members and group members. Groups in turn can also belong to a specific group type, which categorizes the group further.
It is best practice to use groups when securing your design objects and applications. By specifying various levels of security for distinct groups, individual user accesss can be controlled by simply adding or removing users to the appropriate group. Groups also designate user roles to give users access to certain areas of Appian.
This page describes how to manage groups. Designers can click on a group anywhere in Appian Designer to open them and view their contents, if they have access.
Actions on members in the grid can be taken from the toolbar, and actions on the current group can be taken from the gear menu.
All group type properties are configured through the Properties dialog. It can be accessed in one of two ways:
The complete list of properties for a group are:
|Name||The name that is used when referencing the group. This name can also be returned when querying the groupName property using the
|Description||Supplemental information about the group that is displayed in the the application contents grid.|
|Parent||The group will inherit security from its parent, and all of its members are indirectly members of the parent.|
|Members||The users and groups that belong to the group. Privileges that are granted to the group will translate to its members.|
|ID||The local ID is the Appian object identifier that gets stored in process and external database tables, which can be used to reference the group in expressions. Note that the local ID is not consistent between Appian instances.|
|UUID||The UUID is another Appian object identifier that can be used to reference the group in expressions, and is consistent between Appian instances.|
|Group Type||Group types allow you to further classify and provide additional properties about groups of that type.|
|Visibility||Visibility determines if a group can be seen in places such as group directory lists, searches, and members lists. The three settings are Public, Personal, and Restricted.|
|Membership||The membership policy determines how users may be added to groups.|
|Attributes||The group's specific values for any additional properties defined on its group type.|
Attributes are custom fields that provide additional information about groups of a particular group type. The attribute's name and data type are defined on the group type, and the attribute's value is defined for each group of that group type.
For example, the Appian Department is a group type that has an attribute named "Director" which is a user data type. The Technology group belongs to the Appian Department group type, and therefore has a Director field to populate specifically for Technology.
If the attribute is a user or group data type, then a value is not required. For other data types, the value is required and pre-populated with a default value that is defined on the group type.
See also: Configure Group Type Attributes
Group creators and group administrators can add and remove a group's members.
Another way of adding members to a group is by configuring membership rules. Group creators and group administrators can view and modify its membership rules, as well as view the number of membership rules directly in the tab name.
To view the added members, return to the Members tab to view the updated group members.
To delete a rule, select it and click Delete in the toolbar.
Group creators and group administrators can create a new group by clicking on New Group in the toolbar. The new group's parent is pre-populated with the current group.
The security rolemap for a group contains only the administrator role, in addition to the group creator. They can do the following:
To view and modify a group's security, select the group and click Security.
When a group is specified as an administrator, the administrator privileges translate immediately to its members. For example, if Group 1 is an administrator of Group 2, adding User 1 to Group 1 automatically and immediately makes User 1 an administrator of Group 2.
Group creators and group administrators can delete a group by selecting a group in the grid and clicking Delete in the toolbar. System administrators may select multiple groups to delete.