The Access Control and Workflow features represent a complete redesign of the former “Rights” functionality within the SAM’URAI solutions.

They allow article withdrawals to be restricted and governed in a more precise, readable, and scalable way, based on:

An access control makes it possible to restrict a user’s access to certain containers, on defined days and time slots.

This is a first level of security, which applies before any product restriction or quota logic.

Here is an example:

Configuration:

Once validated:

A user without any access control:

No restriction is applied to them.

The access control defines where and when the user is authorized to access containers.

For each day of the week, it is possible to define an access time slot.

Example:

Each day is configured independently, allowing the setup to match real operational hours.

The access control also allows defining which containers are authorized.

Outside of:

👉 the user has no access and cannot perform any article withdrawal.

The Workflow feature goes further than access control.

It allows the implementation of advanced business rules, including:

The Workflow is applied after access control and determines what the user can take and in what quantity, based on the configured frequencies.

✅ In summary

The Workflow operates as a cascading filter:
​Categories → Products → Articles → Withdrawal mode

Each choice conditions the next one to ensure a clear, logical, and secure selection.

The Workflow allows defining progressive restrictions, organized in a step-by-step logic.
Each level conditions the next to ensure a controlled and consistent selection.

This first step defines the scope of accessible categories.

✔️ If no category is selected, all categories are available
✔️ Selected categories must be explicitly defined
❌ Non-selected categories will not be available for withdrawal

👉 This selection forms the foundation of the entire Workflow and impacts all subsequent steps.

Once categories are defined, the Workflow allows restricting product selection.

✔️ Only products belonging to previously authorized categories can be selected
❌ Products from non-selected categories are automatically excluded

👉 This ensures consistency between categories and products.

The same principle applies at the article level.

✔️ Only articles linked to previously authorized products can be selected
❌ Any selection outside this scope is impossible

👉 This step further refines control.

For each Workflow line, it is possible to define the withdrawal mode:

🔹 Click & Collect
🔹 Direct withdrawal

👉 This configuration allows the Workflow to adapt to different use cases and organizational needs.

Quotas make it possible to limit the quantities of articles that can be withdrawn, based on rules defined in the Workflow.

They apply after all previously enforced restrictions:

Quotas apply only to elements already authorized by the Workflow.

Quotas can be defined at different levels:

👉 The quota level depends on the granularity defined in the Workflow.

Each quota is associated with a reset frequency:

The frequency determines the time window over which the withdrawal counter is calculated.

For each quota, its behavior can be defined:

🔒 Blocking quota

Once the quota is reached:

👉 No overrun is allowed.

⚠️ Non-blocking quota

Once the quota is reached:

👉 This mode allows flexible control without stopping activity.

Quotas follow the cascading logic of the Workflow.

They apply only to:

👉 An article that is not accessible via the Workflow is never subject to quotas, since it is not visible for withdrawal.

This hierarchy ensures clear, readable, and consistent rule management.

If no quota is defined:

Quotas represent the final level of control:

👉 Access (Access Control)
👉 Select (Workflow)
👉 Limit (Quotas)

They combine security, flexibility, and usage control, while adapting to business constraints.