Runtime App Users

User Type	Permissions
Users (Role)	Users is the default role for runtime app users. Users with the Users role can access apps, processes, and tasks in Work Center. Access Rights: Update The User's Own Profile Initiate A Process Enable Work Center Access Create, Update, And Remove Application Resources
App Initiators (Permission Group)	App Initiators is a permission group for users or groups who have access rights to start a process-based app or form-based app. For process-based apps, App Initiators are also process initiators for all process models within the app. In a process-based app, an App Initiator must also be a participant for the start task to initiate an app. This means that when an App Initiator is configured at the global level in Manage Center, the App Initiator can start any app, but only if they are configured as a participant for the start task in an app. For form-based apps, App Initiators are simply runtime app users for the app. App Initiators can be assigned at the global level or for an individual app: If App Initiators are assigned in Manage Center, they have access to all apps. If App Initiators are assigned in App Builder, they have access to the individual apps where they are assigned. An AgilePoint NX tenant can have App Initiators assigned at both the global level and assigned to individual apps. Permissions: This permission group has these permissions for a specific app: Start an app instance. These permissions from Report Viewers: View applicattion data. Limitations: Users and groups can only be assigned to the App Initiators permission group after an app is published.
Report Viewers (Permission Group)	Report Viewers is a permission group for users or groups who have access rights to view the application data in an eForm report view for a specified app. Report Viewers can be assigned at the global level or for an individual app: If Report Viewers are assigned in Manage Center, they have access to all apps. If Report Viewers are assigned in App Builder, they have access to the individual apps where they are assigned. An AgilePoint NX tenant can have Report Viewers assigned at both the global level and assigned to individual apps. Permissions: This permission group has these permissions for a specific app: View applicattion data. Limitations: Users and groups can only be assigned to the Report Viewers permission group for an app after the app is published.
Form user (Task Participant)	Description: A form user is a person who uses an eForm or AgilePoint NX app at runtime. In a process-based app, a form user is a type of process participant. Permissions: Any permissions available to a runtime app user for a specific process-based app or form-based app.
Mobile app user (Task Participant)	Description: A mobile app user is a person using an app on a mobile device, including mobile apps that are created with the Mobile App Accelerator. Permissions: The same permissions as any runtime app user for a specific process-based app or form-based app.
Anonymous form user (Task Participant)	Description: An anonymous form user is a person who completes an anonymous form. Permissions: The same permissions as Task Participants (authenticated form users), except that an anonymous form user can complete the form without authenticating AgilePoint NX.
Read Records (Permission Group)	Read Records is a permission group for users and groups who have access rights to read records for a specific entity in Data Entities. Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity. Permissions: This permission group has these permissions for a specific entity: Read (view) records.
Edit Records (Permission Group)	Edit Records is a permission group for users and groups who have access rights to change and read records for a specific entity in Data Entities. Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity. Permissions: This permission group has these permissions for a specific entity: Edit (change) records. These permissions from Read Records: Read (view) records.
Create Records (Permission Group)	Create Records is a permission group for users and groups who have access rights to create, change, and read records for a specific entity in Data Entities. Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity. Permissions: This permission group has these permissions for a specific entity: Create (add) records. These permissions from Edit Records: Edit (change) records. These permissions from Read Records: Read (view) records.
Delete Records (Permission Group)	Delete Records is a permission group for users and groups who have access rights to delete, create, change, and read records for a specific entity in Data Entities. Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity. Permissions: This permission group has these permissions for a specific entity: Delete records. These permissions from Create Records: Create (add) records. These permissions from Edit Records: Edit (change) records. These permissions from Read Records: Read (view) records.
Page Viewers (Permission Group)	Page Viewers is a permission group for users or groups who have access rights to see a custom page, but can not add or delete the page, in Page Builder. Permissions: This permission group has these permissions for a specific custom page: View page.
Anonymous page user (Task Participant)	Description: An anonymous page user is a person who uses an anonymous page. Permissions: The same permissions as a Page Viewer, except that an anonymous page user can use the page without authenticating AgilePoint NX.

Users

(Role)

Users is the default role for runtime app users. Users with the Users role can access apps, processes, and tasks in Work Center.

Access Rights:

Update The User's Own Profile
Initiate A Process
Enable Work Center Access
Create, Update, And Remove Application Resources

App Initiators

(Permission Group)

App Initiators is a permission group for users or groups who have access rights to start a process-based app or form-based app.

For process-based apps, App Initiators are also process initiators for all process models within the app.
In a process-based app, an App Initiator must also be a participant for the start task to initiate an app. This means that when an App Initiator is configured at the global level in Manage Center, the App Initiator can start any app, but only if they are configured as a participant for the start task in an app.
For form-based apps, App Initiators are simply runtime app users for the app.

App Initiators can be assigned at the global level or for an individual app:

If App Initiators are assigned in Manage Center, they have access to all apps.
If App Initiators are assigned in App Builder, they have access to the individual apps where they are assigned.

An AgilePoint NX tenant can have App Initiators assigned at both the global level and assigned to individual apps.

Permissions:

This permission group has these permissions for a specific app:

Start an app instance.
These permissions from Report Viewers:
- View applicattion data.

Limitations:

Users and groups can only be assigned to the App Initiators permission group after an app is published.

Report Viewers

(Permission Group)

Report Viewers is a permission group for users or groups who have access rights to view the application data in an eForm report view for a specified app.

Report Viewers can be assigned at the global level or for an individual app:

If Report Viewers are assigned in Manage Center, they have access to all apps.
If Report Viewers are assigned in App Builder, they have access to the individual apps where they are assigned.

An AgilePoint NX tenant can have Report Viewers assigned at both the global level and assigned to individual apps.

Permissions:

This permission group has these permissions for a specific app:

View applicattion data.

Limitations:

Users and groups can only be assigned to the Report Viewers permission group for an app after the app is published.

Form user

(Task Participant)

Description:

A form user is a person who uses an eForm or AgilePoint NX app at runtime.

In a process-based app, a form user is a type of process participant.

Permissions:

Any permissions available to a runtime app user for a specific process-based app or form-based app.

Mobile app user

(Task Participant)

Description:

A mobile app user is a person using an app on a mobile device, including mobile apps that are created with the Mobile App Accelerator.

Permissions:

The same permissions as any runtime app user for a specific process-based app or form-based app.

Anonymous form user

(Task Participant)

Description:

An anonymous form user is a person who completes an anonymous form.

Permissions:

The same permissions as Task Participants (authenticated form users), except that an anonymous form user can complete the form without authenticating AgilePoint NX.

Read Records

(Permission Group)

Read Records is a permission group for users and groups who have access rights to read records for a specific entity in Data Entities.

Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity.

Permissions:

This permission group has these permissions for a specific entity:

Read (view) records.

Edit Records

(Permission Group)

Edit Records is a permission group for users and groups who have access rights to change and read records for a specific entity in Data Entities.

Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity.

Permissions:

This permission group has these permissions for a specific entity:

Edit (change) records.
These permissions from Read Records:
- Read (view) records.

Create Records

(Permission Group)

Create Records is a permission group for users and groups who have access rights to create, change, and read records for a specific entity in Data Entities.

Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity.

Permissions:

This permission group has these permissions for a specific entity:

Create (add) records.
These permissions from Edit Records:
- Edit (change) records.
These permissions from Read Records:
- Read (view) records.

Delete Records

(Permission Group)

Delete Records is a permission group for users and groups who have access rights to delete, create, change, and read records for a specific entity in Data Entities.

Permissions for entity records (Read, Edit, Create, Delete Records) apply only to the records for a specified entity at runtime. Users with these permissions can not access the entity in Data Entities at design time unless they also have Entity Designers or higher level permissions for the entity.

Permissions:

This permission group has these permissions for a specific entity:

Delete records.
These permissions from Create Records:
- Create (add) records.
These permissions from Edit Records:
- Edit (change) records.
These permissions from Read Records:
- Read (view) records.

Page Viewers

(Permission Group)

Page Viewers is a permission group for users or groups who have access rights to see a custom page, but can not add or delete the page, in Page Builder.

Permissions:

This permission group has these permissions for a specific custom page:

View page.

Anonymous page user

(Task Participant)

Description:

An anonymous page user is a person who uses an anonymous page.

Permissions:

The same permissions as a Page Viewer, except that an anonymous page user can use the page without authenticating AgilePoint NX.

Runtime App Users

All Runtime App User Types in AgilePoint NX