[FEATURE] User rights roles

[Danny-dK]

Is your feature request related to a problem? Please describe.

When adding a user to a research-group, they by default receive read-write rights. Inexperienced users may miss this to change to read rights where only read rights should have been applied.

A user with read-write rights can delete data. Whereas it may not always be required that someone should be able to delete data, but should be able to write data.

Describe the solution you'd like

The default rights assigned to new users to be the read rights instead of the read-write rights.

An extra user rights role that is able to read-write but not delete, and a user role that is able to read-write-delete.

Describe alternatives you've considered

Creating different research-groups and copying data in those folders for which the data is okay to be deleted by a user. This however results in excessive copying of data. Of course the usage of the vault protects from complete loss / deletion of data, but in practice, the vault is not always used as it should / is desired.

[stsnel]

Thanks for the proposal. We have scheduled this ticket for discussion at the 14 March data manager meeting.

[stsnel]

The outcome of the data manager meeting was:

• The proposal for adding a separate user role with ability to view existing data and upload new data, but not delete or change data uploaded by other users in the group, was approved by the datamanagers. We have registered this proposed change as ticket number YDA-5122 for refinement and planning.
• At this time, we will not change the default role for new users, because the regular user role (read+write) is used most frequently and adding an extra click action for promoting the new user to regular user does not protect against adding the wrong user to a group. We can revisit this decision at a later meeting if needed.