How to Represent Constraints for Role-Based Access Control in a Task Management Use Case Diagram?
I'm working on designing a use case diagram for a task management application, and I'm seeking guidance on representing role-based access control (RBAC) effectively.
I've created a preliminary use case diagram that includes actors such as "Manager" and "Standard User," along with various use cases like "Manage Projects," "Manage Tasks," and so on. However, I'm struggling to depict the relationship where standard users are restricted to projects and tasks assigned by managers.
I've created two use cases 'Manage Assigned Project' and 'Manage Assigned Tasks'. Tasks are dependent on a project. The manager is linked to the assigned project via association.
How to represent this constraint effectively in the use case diagram?
If deemed useful, here are the requirements I need to cover:
- The application should support CRUD operations (Create, Read, Update, Delete) on projects and tasks.
- Tasks can only be created if a project already exists.
- Managers should have access to all features across all projects and tasks.
- Standard users are limited to projects and tasks assigned by managers.
- Standard users can only read and edit tasks.
- Managers should be able to assign tasks and projects to standard users.
The manager and the project manager both aim to manage projects and tasks. It's their shared goal.
It's just that their role and contributions in regard of this goal changes : while the manager has a greater responsibility, and probably has to identify, specify and assign tasks, the standard user contributes to the management of these items, of course limited to the assignements. This pleads to make manager a primary actor of manage project and manage task, and make standard user a supporting actor to the same use-cases.
Whether you follow or not the advice, you could show the contraint in the diagram with a text between curly brackets { only for projects/tasks assigned to the user }. This would however clutter the diagram with too many details. A better alternative is to describe the constraint in the use-case description/ narrative.
- Validate user-submitted username string for qualifying length and character constraints
- MiniZinc: Getting two outputs for an optimal path in a simple TSP model
- Unique Key constraints for multiple columns in Entity Framework
- Scipy minimize .. 'Inequality constraints incompatible'
- DDL date data type in check constraint manipulation in Oracle
- Oracle Unique Constraint based on column value
- Solve an implicit ODE (differential algebraic equation DAE)
- Type constraints with multiple type variables in Haskell function signature
- Laravel Eloquent truncate - Foreign key constraint
- Are multiple objectives possible? (OR-TOOLS Constraint Programming)
- PostgreSQL after-trigger for table constraint
- How to truncate a foreign key constrained table?
- What is the exact meaning of {xor} in this specific situation?
- How to specify number of instances in UML Class diagram
- How to handle JPA unique constraint violations?
- Constrained matrices
- TextView is ignoring its boundaries with longer text and second line. How to fix that?
- PostgreSQL : NOT VALID constraint vs validation trigger
- How to add programmatic constraints to a UITableView?
- Filtering the Results of Expand.Grid
- Pulling Info From More Than One Class in a Constraint Stream
- Convert XML Constraint Layout to Jetpack Compose - Chain Style, Bias
- How to Represent Constraints for Role-Based Access Control in a Task Management Use Case Diagram?
- UIView animation works one time then it doesn't work
- How to solve constraints issue: Position is ambiguous for UIButton?
- Why is this constraint function so much slower than a similar one and how do I increase the speed in Scipy Optimize?
- What is point of constraint validation @Null?
- How to detect when all the bounds are initialized in UIKit?
- How to Create a Conditional Unique Constraint Based on Latest Updates in SQL
- How to restrict T to certain specific value types using a constraint?