Table of Contents

Pimics permission sets – what users can do

This document summarizes what an end user can do with each Pimics permission set defined in this app.

Permission legend

  • R = Read
  • I = Insert
  • M = Modify
  • D = Delete
  • X = Execute

End-user assignable permission sets

PIMX Minimal (Pimics Minimal)

Intended use: light/read-oriented access to Pimics with limited write access.

Users can:

  • View core Pimics setup and reference data (for example channel, catalog setup, publication header/line, item group, user preferences).
  • Read document and publication information.
  • Create/update activity and change log related records used by the app runtime.
  • Maintain selected supporting data such as catalog keywords/translations and temporary sync/pipeline helper data.
  • Run core supporting codeunits needed by the solution runtime.

Users cannot:

  • Perform broad maintenance across Pimics master data.
  • Fully manage publication, classification, and configuration entities.

Includes:

  • PIMXAC Minimal (external/included permission set).

PIMX API Publication (Pimics API Publication)

Intended use: API/integration users that need publication read access.

Users can:

  • Read publication structures and related setup/map data (publication header/line, queue, rule, table lines, references, archives).
  • Read catalog/document setup information needed by API publication flows.
  • Write activity log entries.
  • Execute Pimics runtime logic via included execute permission set.

Users cannot:

  • Maintain broad Pimics master data.
  • Perform full authoring/administration tasks across Pimics.

Includes:

  • PIMX Minimal
  • PIMX Execute

PIMX User (Pimics User)

Intended use: daily Pimics operational users.

Users can:

  • Create and maintain most Pimics entities (classification, features, content templates, documents, translations, publications, pipeline, export mappings, rules, templates, user filters/preferences).
  • Work with publication lifecycle data (headers, lines, queues, rules, channels, references, prices, archives).
  • Maintain checklist/certification/configuration-related records.
  • Read/insert/modify Item records (no delete on Item).
  • Execute Pimics runtime and process logic through included execute rights.

Users cannot:

  • Delete Item records.
  • Be treated as full technical administrators by permission scope alone.

Includes:

  • PIMX Minimal
  • PIMX Execute

PIMX Super User (Pimics Super User)

Intended use: Pimics power users / administrators.

Users can:

  • Perform full maintenance (read/insert/modify/delete) on nearly all Pimics tables listed in the set.
  • Maintain Item with delete rights (RIMD), unlike PIMX User.
  • Execute Pimics runtime logic and open dedicated Azure pages granted in this set.
  • Manage setup, master data, pipeline, publication, classification, and operational records with full data authority.

Includes:

  • PIMX Minimal
  • PIMX Execute

Technical/internal permission sets

PIMX Execute

  • Assignable = false (not intended to assign directly to end users).
  • Provides broad execute rights on Pimics objects (tables/reports/codeunits/pages and other object types), so app logic can run.
  • Is meant to be included by functional sets such as PIMX User, PIMX Super User, and PIMX API Publication.

Permission set extensions (Business Central base roles)

These do not define standalone business capabilities; they extend standard D365 roles:

  • PIMX Basic extends D365 BASIC and adds PIMX Minimal.
  • PIMX BUS FULL ACCESS extends D365 BUS FULL ACCESS and adds PIMX User.
  • PIMX FULL ACCESS extends D365 FULL ACCESS and adds PIMX Super User.

Quick recommendation matrix

  • Read-focused Pimics access: PIMX Minimal
  • API publication reader/integration user: PIMX API Publication
  • Operational editor/maintainer: PIMX User
  • Full Pimics admin/power user: PIMX Super User

Source files

  • Installation and configuration/Permissions/Minimal.al
  • Installation and configuration/Permissions/API.al
  • Installation and configuration/Permissions/User.al
  • Installation and configuration/Permissions/Super User.al
  • Installation and configuration/Permissions/Execute.al
  • Installation and configuration/Permissions/Basic.extension.al
  • Installation and configuration/Permissions/BusFullAccess.extension.al
  • Installation and configuration/Permissions/FullAccess.extension.al