Prerequisites
- Polarion Admin or Project Admin role
- Access to Administration interface
- Active Nextedy licenses for Risksheet/PowerSheet (if assigning product-specific permissions)
Steps
1. Navigate to Permission Settings
Or from the project:
2. Assign Polarion Project Roles
TestAuto2 leverages standard Polarion roles with custom role-based form layouts (HATs):
| Role | Typical Access | Recommended For |
|---|
| project_admin | Full project control, configuration changes | Project managers, Safety managers |
| project_user | Create/edit work items, submit for review | Safety engineers, Design engineers |
| project_reader | Read-only access, dashboard viewing | Stakeholders, Auditors |
| reviewer | Approve/reject documents, comment | Functional safety assessors |
- Select user from the list
- Click ➕ Add Role
- Choose role from dropdown
- Click Save
Each role gets a tailored dashboard: Safety Engineer Dashboard, Design Engineer Dashboard, V&V Engineer Dashboard, etc. Role assignment automatically configures the home page widget visibility.
| Work Item Type | Create | Edit | Delete |
|---|
| Hazard, FailureMode | Safety Engineers | Safety Engineers + Reviewer | Project Admin only |
| SystemRequirement | Safety Engineers, Design Engineers | Same + Reviewer | Project Admin only |
| RiskRecord | Safety Engineers | Safety Engineers | Project Admin only |
| VerificationTestCase | V&V Engineers | V&V Engineers | Project Admin only |
| SafetyGoal | Safety Engineers | Safety Engineers + Reviewer (workflow-controlled) | Project Admin only |
For work items with ASIL classification (SafetyGoal, SystemRequirement), enable workflow-based edit locking. Once a document enters “In Review” state, only reviewers should modify ASIL ratings. Configure this in .polarion/documents/workflow/document-workflow.xml.
4. Assign Nextedy Product Licenses
Risksheet and PowerSheet features require active licenses:
License types:
- Active User: Full read/write access to risksheet/powersheet (edit cells, formulas, views)
- Viewer: Read-only access (view sheets, export to Excel, but cannot edit)
- No License: Cannot access risksheet/powersheet features (documents show error: “Nextedy license required”)
Assign a license:
- Select user from “Unlicensed Users” list
- Click Assign Active License or Assign Viewer License
- Verify license count decreases in the header (e.g., “23 / 25 licenses used”)
TestAuto2 deployments typically allocate Active licenses to Safety Engineers and Design Engineers who author FMEA/HARA documents. Assign Viewer licenses to stakeholders who only need to review risk matrices. Exceeding license count blocks new assignments.
| Space | Admin | Author | Viewer |
|---|
| Risks/ | Proj Admin | Safety Engineer | All |
| Requirements/ | Proj Admin | Safety Engineer | All |
| Testing/ | Proj Admin | V&V Engineer | All |
| Documentation/ | Proj Admin | All | All |
- Admin: Create/delete documents, modify space config
- Author: Create documents, edit work items, submit for review
- Viewer: Read documents, export to PDF, view dashboards
6. Set Custom Field Permissions (Optional)
Restrict who can edit critical safety fields like ASIL classification or Action Priority:
- Edit
.polarion/documents/fields/custom-fields.xml
- Add
<allowedRoles> to field definition:
<custom-field id="classification">
<label>Special Characteristic</label>
<type>enum</type>
<enum-id>sc-cc-classification</enum-id>
<allowedRoles>
<role id="project_admin"/>
<role id="safety_engineer"/>
</allowedRoles>
</custom-field>
- Commit and restart repository to apply changes
Fields like finalActionPriority (FMEA) or asil (HARA) are auto-calculated by risksheet formulas. Set these as read-only for all users to prevent manual override. The formula recalculates on every risksheet save.
7. Verify Permissions
Check as non-admin user:
- Log in as a test user (e.g.,
safety.engineer role)
- Navigate to a HARA document in Risks/ space
- Verify:
- Risksheet loads (license check)
- Can edit hazard rows (work item permission)
- Can save changes (document author permission)
- Can submit for review (workflow permission)
- Navigate to Home Dashboard
- Verify role-specific widgets appear (Safety Engineer Dashboard components)
Polarion caches permissions for 5 minutes. After changing roles or licenses, users must log out and log back in to see updated access. Alternatively, administrators can restart the Polarion repository to flush the cache immediately.
Verification
You should now see:
- User list in Administration → Users and Groups shows assigned roles
- Nextedy License Management shows allocated Active/Viewer licenses
- Test user can open a risksheet document and see edit controls (or read-only view if Viewer license)
- Work item forms show/hide fields based on role (HAT-based form layouts)
- Document submission workflow transitions appear/disappear based on reviewer role
Troubleshooting
| Issue | Cause | Solution |
|---|
| ”Insufficient permissions to edit” | User lacks project_user role or work item type permission | Assign project_user role, verify Access Control settings |
| ”Nextedy license required” error | User has no Active license | Assign Active or Viewer license in Nextedy License Management |
| Risksheet shows read-only, cannot edit cells | User has Viewer license or document is in frozen workflow state | Upgrade to Active license; check document workflow status |
| Role-specific dashboard missing widgets | User role not mapped in pages/spaces/_default/Home/page.xml | Verify role ID matches Velocity #if($page.user.hasRole("role_id")) condition |
See Also
