specs/models/M_USER

User

A user is a digital object representing a person that has any access right to the Tulip system. There are two types of users:

  1. Users- Users with some level of access to Tulip
  2. Operators- Users with access to the Tulip Player for running Tulip apps

The User Model contains the following Models:

When actions are completed in Tulip or Tulip Player, they are always attributed to an individual User.

Tulip Users can authenticate via the following methods:

  • LDAP
  • SAML
  • Email/Password
  • Badge ID (Tulip Player only)

See the Authentication Methods page for more details

Once a user is created, it is permanently stored in the Tulip account. It can be “deactivated” so that the user is no longer allowed to log into Tulip or the Tulip Player.

If a user is “deactivated”, then another user can use their badge ID.

Fields

NameDescription
NameThe name defined by the user
User IDThe unique identifier of the user. This value is often mapped to an organization's auth system.
EmailThe email address given by the user. Required for login.
PasswordThe password given by the user. Required for logging into Tulip. This value is often mapped to an organization's auth system.
Badge IDA unique alphanumeric ID assigned by a Tulip user with user “create” privileges.
RoleA specific role from the list of User Roles
User FieldsA list of custom fields that are given to every user by a user with access to the “User Fields” page
StatusThe user’s status around logging into Tulip- either active, deactivated or pending
ImageA custom image that will be displayed as a headshot
Phone NumberA phone number that can be texted from a Tulip app. A user can only enter their own phone number.
LanguageBy default, Tulip will attempt to use the same language as the browser default. The user can manually set this to another language.

Tests

IDName
QA-T4User Management : 01 - Create new administrator account
QA-T5User Management : 02 - Receive welcome e-mail and registration link
QA-T10User Management : 04 - Log in with new admin
QA-T11User Management : 05 / Cannot Create an Admin with an empty or used Email
QA-T12User Management : 06 - Add phone number to admin account
QA-T13User Management : 07 - Upload image/gif for Admin icon on /account
QA-T16User Management : 08 - Create new operator account
QA-T120Group-Restricted LDAP : 02 - Users in the configured admin group can log in
QA-T121Group-Restricted LDAP : 03 - Users operator group can log in
QA-T122Group-Restricted LDAP : 04 / Admins should not be able to create Users
QA-T123Group-Restricted LDAP : 05 - Deactivated users should still be able to log in
QA-T171SAML : 02 - Admins can log in to Factory using SAML
QA-T172SAML : 04 - Operators can log into Player using SAML
QA-T260User Roles : 01 - Account Owners can add other Account Owners
QA-T261User Roles : 03 - Account Owners can edit other users' profiles
QA-T262User Roles : 02.1 - Account Owners can create new Account Owners
QA-T263User Roles : 04 - Account Owners should be able to deactivate/reactivate users
QA-T264User Roles : 05 / Administrators should not be able to manage users
QA-T265User Roles : 06 / Tulip Table Supervisors should not be able to manage connectors
QA-T266User Roles : 07 / Tulip Table Supervisors should not be able to manage the shop floor
QA-T267User Roles : 08.1 / Viewers should be unable to run Apps or edit/modify Apps, Dashboards, and Analytics
QA-T279User Management : 10 - Users can change their password
QA-T331LDAP Tulip Managed : 01 - Creating Users
QA-T332LDAP Tulip Managed : 02 - Users can log in via LDAP
QA-T333LDAP Tulip Managed : 03 - Deactivated Users can't Log In
QA-T387User Management : 11 - User Deactivation
QA-T636Workspaces : 01 - Login with different roles
QA-T653LDAP Tulip Managed : 01 / Creating a User with the same name
QA-T655LDAP Tulip Managed : 02 / Operators can't log into Factory via LDAP
QA-T660User Management : 03 / Password Creation for New Admin with wrong input
QA-T661User Management : 06 / Try to add phone number with a false Verification Code
QA-T663User Management : 08 / Trying to create New Operator Account without entering a name/with a Badge ID in use
QA-T692User Management : 03 - Password Creation for New Admin
QA-T693User Management : 03.2 - Onboarding sequence
QA-T708User Roles : 05 - Administrator role
QA-T749Workspaces : 10 / - Failing to create a new user with email registered in another workspace
QA-T750Workspaces : 11 / - Failing to run an app from another workspace
QA-T751Workspaces : 12 / - Workspace owner cannot access other workspaces
QA-T804User Management : 12 - User Permission after Reactivation
QA-T880User Roles : 02.2 - Account Owners can create users other than Account Owners
QA-T1141User roles : 09.1 - Operator role
QA-T1145User roles : 09.2 - Inviting Operator users
QA-T1146User roles : 09.3 / Operators can't log in to Factory or register a Player
QA-T1153User Roles : 17.1 - Viewer (with Player Access) role - Settings
QA-T1159User Roles : 17.2 - Viewer (with Player Access) role - Player, Dashboards, Apps, Analytics
QA-T1160User Roles : 17.4 - Viewer (with Player Access) role - Machines, Machine Types, Data Sources, Vision
QA-T1161User Roles : 17.3 - Viewer (with Player Access) role - Tables, Connectors, Stations, Display Devices
QA-T1162User Roles : 11.1 - Connector Supervisor role - Settings
QA-T1163User Roles : 11.2 - Connector Supervisor role - Player, Dashboards, Apps, Analytics
QA-T1164User Roles : 11.3 - Connector Supervisor role - Tables, Connectors, Stations, Display Devices
QA-T1165User Roles : 11.4 - Connector Supervisor role - Machines, Machine Types, Data Sources, Vision
QA-T1166User Roles : 12.1 - Tulip Table Supervisor role - Settings
QA-T1167User Roles : 12.2 - Tulip Table Supervisor role - Player, Dashboards, Apps, Analytics
QA-T1168User Roles : 12.3 - Tulip Table Supervisor role - Tables, Connectors, Stations, Display Devices
QA-T1172User Roles : 12.4 - Tulip Table Supervisor role - Machines, Machine Types, Data Sources, Vision
QA-T1182User Roles : 13.1 - Station Operator role - Settings
QA-T1183User Roles : 13.2 - Station Operator role - Player, Dashboards, Apps, Analytics
QA-T1184User Roles : 13.3 - Station Operator role - Tables, Connectors, Stations, Display Devices
QA-T1185User Roles : 13.4 - Station Operator role - Machines, Machine Types, Data Sources, Vision
QA-T1197User Roles : 14.1 - Station Supervisor role - Settings
QA-T1198User Roles : 14.2 - Station Supervisor role - Player, Dashboards, Apps, Analytics
QA-T1199User Roles : 14.3 - Station Supervisor role - Tables, Connectors, Stations, Display Devices
QA-T1200User Roles : 14.4 - Station Supervisor role - Machines, Machine Types, Data Sources, Vision
QA-T1201User Roles : 15.1 - Administrator role - Settings
QA-T1202User Roles : 15.2 - Administrator role - Player, Dashboards, Apps, Analytics
QA-T1203User Roles : 15.3 - Administrator role - Tables, Connectors, Stations, Display Devices
QA-T1204User Roles : 15.4 - Administrator role - Machines, Machine Types, Data Sources, Vision
QA-T1205User Roles : 16.1 - Application Approver role - Settings
QA-T1206User Roles : 16.2 - Application Approver role - Player, Dashboards, Apps, Analytics
QA-T1207User Roles : 16.3 - Application Approver role - Tables, Connectors, Stations, Display Devices
QA-T1208User Roles : 16.4 - Application Approver role - Machines, Machine Types, Data Sources, Vision
QA-T1209User Management: 15 / Login Attempt Rate Limiting
QA-T1212User Management: 17 - Account owner can register player
QA-T1214SAML : 07 - Roles from SAML Attributes Overwrite Tulip Roles with IdP Control Mode
QA-T1216User Roles : 10.1 - Application Builder role - Settings
QA-T1217User Roles : 10.2 - Application Builder role - Player, Dashboards, Apps, Analytics
QA-T1219User Roles : 10.3 - Application Builder role - Tables, Connectors, Stations, Display Devices
QA-T1220User Roles : 10.4 - Application Builder role - Machines, Machine Types, Data Sources, Vision
QA-T1222User Roles : 08.2 / Viewers should be unable to create, edit, or modify Tables
QA-T1223User Roles : 08.3 / Viewers should be unable to create, edit, or modify Connectors and Connector Functions
QA-T1224User Roles : 08.4 / Viewers should be unable to create, edit, or modify Stations
QA-T1225User Roles : 08.5 / Viewers should be unable to create, edit, or modify Display Devices
QA-T1226User Roles : 08.6 / Viewers should be unable to create, edit, or modify Machines
QA-T1227User Roles : 08.7 / Viewers should be unable to create, edit, or modify Machine Types
QA-T1228User Roles : 08.8 / Viewers should be unable to create, edit, or modify Machine Data Sources
QA-T1229User Roles : 08.10 / Viewers should not be able to access Vision
QA-T1230User Roles : 08.9 / Viewers should be unable to update Edge Devices
QA-T1231User Roles : 08.11 / Viewers cannot register Players
QA-T1232User Roles : 18.1 - Application Engineer role - Settings
QA-T1234User Roles : 18.3 - Application Engineer role - Tables, Connectors, Stations, Display Devices
QA-T1235User Roles : 18.4 - Application Engineer role - Machines, Machine Types, Data Sources, Vision
QA-T1236User Roles : 19.2 - Workspace Owner role - Player, Dashboards, Apps, Analytics
QA-T1237User Roles : 19.3 - Workspace Owner role - Tables, Connectors, Stations, Display Devices
QA-T1238User Roles : 19.4 - Workspace Owner role - Machines, Machine Types, Data Sources, Vision
QA-T1241User Roles : 19.1 - Workspace Owner role - Settings
QA-T1255Misc Tests - Logged In User is displayed when logged into Factory and Player

Requirements

IDRequirement
PLAT-8885 (813)All data shall be Attributable; data must be identified to the person who did the data collection. Records shall include information about how the data was acquired, action/activity performed, where and and when.
PLAT-8899 (43)All user maintenance activities shall be recorded.