# System permissions

[]
access = read : [ * ], write : [ admin ]

### VIEWSTATES: even normal users should be able to create shared viewstates

[viewstates]
access = read : [ * ], write : [ * ]

### JSON Web Tokens: should only be readable/writable by admin

[collections/JsonWebTokensV1]
access = read : [ admin ], write : [ admin ]

### SPL2Modules: should only be readable/writable by data orchestrator

[collections/Spl2Modules]
access = read : [ admin ], write : [ admin ]

### Allow all users to write user role information for SAML users 

[authentication/userToRoleMap_SAML]
access = read : [ * ], write : [ * ]

### Recently Viewed Knowledge Objects: every user should be able to read and write to this collection

[collections/RecentlyViewedKO]
access = read : [ * ], write : [ * ]

### Per user search history records
[collections/SearchHistory]
access = read : [ * ], write : [ * ]

### Home Page Configuration settings: every user should be able to read from this collection, only admins should be able to write to this collection
[collections/HomePageAdminConfig]
access = read : [ * ], write : [ admin ]

### Per user custom resources with information for url, title, and opening context
[collections/HomePage]
access = read : [ * ], write : [ * ]