approved for 120 payment.

No documentation updated needed on this issue.

Andrea

• To test a user would have the file archive module would need to be turned on and then a user without any MODULE_FILE permissions would need to make sure the file archive and file import options do not appear under the Utilities menu.

• There are also three separate permissions that control specific behaviour

  • MODULE_FILE_PAYFORM

    • has _CREATE, _REPORT, _VIEW permissions 

    • controls whether an employee can create, report on or view payforms (payslips) via the file import and / or file archive tabs

  • MODULE_FILE_PAYROLLARCHIVE

    • has _REPORT and _VIEW permissions

    • controls ability to report on and view payroll archives (a.k.a payrollcd)

  • MODULE_FILE_W2ARCHIVE

    • has _CREATE, _REPORT and _VIEW

    • controls whether a user can create, report on and/or view W2 archives

  • having the create role for payform or w2archive allows a zip file containing pdfs of the payslips or w2s to be loaded using the file import option

    • the file name of the pdfs in the zip file need to conform use one of the excepted file seperators (i.e.) underscores

      • ex. 333333333_20180115_disrictname.pdf

      • in the example above you would set the filename segment to 1 signifying that is the position the employee number is in

  • the view permission will allow these files to be accessed and downloaded via the file archive interface

  • the report permission will allow these files to be reported on 

• permissions can be manipulated in testing to ensure security is being applied correctly using the various permission schemes