Information Security (Infosec) Levels
Infosec levels provide security classification for resources across the platform. Once enabled, this feature cannot be disabled.
Navigation: Admin Settings (user menu) → Infosec Levels in the admin sidebar, or go directly to /admin/infosec.
This page is only accessible when the environment variable
VITE_INFOSEC_ENABLEDis set to"true".
Enable Infosec Levels
- On the Infosec Levels tab, locate the Enable Infosec Levels toggle.
- Switch the toggle to ON.
- An alert reminds you: "Once enabled, this setting cannot be disabled."
- Configure the maximum and default levels (see next section).
- Click Save Changes.
Warning: Enabling infosec levels is a permanent, irreversible action for the organization. Once enabled, the toggle is disabled and cannot be turned off.
Configure Maximum and Default Levels
After enabling infosec:
- Maximum Infosec Level Allowed — Select the highest level that can be assigned to any resource in the organization. This acts as a ceiling.
- Default Infosec Level for All Resources — Select the level automatically assigned to new resources. This must be at or below the maximum level.
Both dropdowns show all available levels with their color indicators, sorted by order.
Validation rules:
- The default level cannot be higher than the maximum level.
- Both fields must be selected before saving.
- Click Save Changes.
View Available Infosec Levels
When infosec is enabled, a "Available Infosec Levels" card appears below the configuration card. This shows all levels defined in the infosec schema (e.g., US DoD classification levels) with:
- A numbered, colored badge for each level
- The level name
This list is read-only and determined by the infosec schema.
Assign Infosec Levels to Users
- Switch to the Infosec Levels Permissions tab.
- The table shows all organization users with their current infosec level assignment.
- Click a user's assigned infosec level to open the edit dialog, or the shield add button in their row if they have no level yet.
- Select the desired level from the dropdown, then click Save.
You can also assign levels from the Users page via the Classification column (only defined levels are listed there; you cannot remove an assignment from that column).
How Infosec Levels Appear Across the Platform
Once enabled, infosec levels are visible throughout the application in several places:
| Location | What is Shown | Who Can Edit |
|---|---|---|
| Top banner (global) | A colored banner displaying the organization's maximum infosec level name | Not editable (display only) |
| Sidebar (user menu) | The current user's personal classification level badge (colored label under their name, replacing the email) | Not editable (set by admin) |
| Profile Settings page | A read-only "Classification Level" field showing the user's assigned level with shield icon and color | Not editable (set by admin) |
| Systems page header | Shield icon with the system's infosec level | Administrator or Owner on the system |
| Files page header | Shield icon with the file's infosec level | Administrator or Owner on the file |
| File details pane (side panel) | A "Classification" property row with inline dropdown to change the level | Administrator or Owner on the file |
| File/artifact content viewer | A colored classification banner below the header bar showing "Resource Classification Level" | Not editable (reflects current level) |
| Upload dialog | Per-file infosec level selector when uploading new files; defaults to the organization default level, highlighted in red if not set | Any user uploading (restricted to their allowed levels) |
| Admin > Users table | Classification column with inline level selector per user | Administrator |
| Admin > Infosec Levels | Configuration and user assignment pages | Administrator |
Level restriction rules:
- Users can only assign levels up to the lower of: the platform maximum, the system maximum (if within a system), and their personal infosec clearance.
- Resources without an explicit assignment inherit the organization's default level.