add security levels to norm rules
Because all norm rules can be edited by all staff with cataloger roles, there is great room for erroneous changes for rules that are applied to batch jobs. For example, the norm rule that is applied to records being brought in from Z39.50 targets can be edited by any staff member. A single error in the rule can break the z39.50 import process for all staff until the source of the error is identified. Likewise, if we have a rule applied to import profiles and a staff member inadvertently changes it and we load 50,000 records, that could cause huge data corruption. There needs to be a way to secure a norm rule to administrators such that normal staff with cataloger roles cannot change them.
Vicki Grahame commented
I though rules could not be changed if they were tied to normalization process or included in a load profile.
I know they cannot be deleted
Stacie Traill commented
Yes, I support this idea. We largely have not had issues with this (very few catalogers venture into the Rules area, even though they can), but it definitely makes me nervous. Agree that normalization/merge/indication rules should all be covered.
A Rowe commented
I agree. Another way this could be done would be for ExL to introduce a Rules Cataloguer role, so that we can assign this to only those staff that need to use rules. Most staff with the Cataloguer role do not need to use rules.
It would also be good to distinguish between staff that can run a rule over a record such as a Use Only role, and staff that can edit and delete rules.
Laura Morse commented
We are too new to have run into issues with merge and indication, but I agree that these should all be treated in the same manner. Thanks for the suggestion!
Mike Rogers commented
I just used my last three votes on this idea. I also agree with Simon that it should be expanded to merge and Indication rules as well. The Cataloger role is one that we have to apply widely to students, and they certainly do NOT need access to the rules. In addition, most staff do not need access either. For us, we would be much happier if these rules were accessible via the Catalog Manager and Catalog Administrator roles only (not Cataloger).
Simon Hunt commented
I would expand that request to merge and indication rules as well. All three types can be used in import profiles, and it should be possible to write-protect individual rules.
François Renaville commented