...
- Collection level: Scenario 1 (no access granted): Roger is a grad student at XYU. Roger wants to access collections of ABC. Without proper authorization from ABC, all requests by Roger to access any part of ABC should be denied.
- Field level: e.g. read permission only for accession numbers, but write permission for the rest of an object record.
- Procedural/Record level: Scenario 1 (collection-level read only permission): Bob wants to update CO1. However, Bob has only read permission to access ABC. Bob's attempt to update CO1 should be denied. Scenario 2 (read only permission for loans, no access permission for objects): Alice is in legal at ABC. She has permissions to access loans. However, she does not have any permission to access CO1. Alice should be allowed to access loan L1 but she should not be allowed to access CO1. Scenario 3: Bob is authorized to access collection object CO1 from collection ABC. Bob's attempt to access CO1 from ABC should be allowed.
- Function level: e.g. user can change the status of a vocabulary term (e.g. provisional add to accepted term).
...