Permissions associated to different user profile#

Unauthenticated user#

An unauthenticated user can submit an application, which create a candidate in the database. To edit an application the candidate must be authenticated, and the account must be with the same email as the one provided when applying. It is highly recommended to first create an account and then submit and application.

Candidate#

An authenticated candidate can see his/her application, and edit it ( as long as application are opened). A candidate can also select interview sessions when the registrations are open.

Reviewer#

A reviewer can see all candidates for which (s)he is the reviewer. By default, a reviewer can only see his/her reviews and the names of the other reviewers. A reviewer can only see recommendations associated to candidates for which (s)he is the reviewer. Depending of the configuration of STRASS, a reviewer can be granted to see all reviews and/or all recommendations letters.

Referee#

A referee can only edit his/her recommendation. A referee cannot see the motivation letter of a candidate.

A jury member, or juror#

A jury member can see all candidates for that are evaluated by his/her juries. Depending of the configuration of STRASS, a jury member can be granted to see all reviews and/or all recommendations letters.

A jury manager#

A jury manager can :

manage jury (names, members, candidates, …).
manage interview sessions (date, juries, slot).
invite users to be reviewers, jurors, jury manager
assign candidate to reviewer, either manually, or with the automated assignation process

Superuser#

A superuser is a specific django role. When associated with is_staff status (which is almost always the case), such user can go to the admin interface, and add/change/delete any instance.