Groups are an important part of how AppControl works. Groups are used to delegate the management of apps from the platform administrator to a group administrator. As the usage of Mendix grows in an organization, it is common that instead of a single central team being responsible for all Mendix development that responsibilities are delegated to separate groups.
Groups can only be created by users with the Platform Administrator role. Once a group is created, has a group administrator assigned to it, and has apps assigned to it, its members can then be managed by the group administrator.
Apps
Groups contain apps. Apps can be assigned to only a single group. Assigning an app to a group makes it inherit any group policies, group scorecards, group tasks, or group pipelines.
Only users with the role Platform Administrator can manage the list of apps in a group.
Group Admins
Groups can have 1 or more group administrators. Group administrators can manage the list of group members, and they can manage all resources in AppControl that are assigned to the group (E.g. Group Policies, Group Scorecards, Group Task Libraries, Group Pipelines).
Only users with the Platform Administrator role can manage the list of group administrators. Note: When adding a user as a group administrator they automatically get the system role 'Group Administrator'.
Group Members
Group members van view the apps that are assigned to the groups that they are member of. Group membership is used only for app visibility in AppControl. When a user is added to a group they are automatically added too each app in the group with the App Member role.
Only users with the Group Administrator role and who are assigned as group administrator can manage the list of group members for a group.
