Skip to main content

Setup DYCE Web App

DYCE Time Tracking is part of the parent DYCE Web App for which further apps are planned. For DYCE Time Tracking for example, there will be integrations in Azure DevOps and Atlassian's Jira.
In this documentation, Time Tracking and Web App are used synonymously.


There are two ways to authenticate with DYCE Time Tracking: with a regular user from your Active Directory or with a client for service-to-service authentication.


For the user who sets up a new company in DYCE Time Tracking the Admin role is automatically assigned. All other users must be created manually for each company in the DYCE Web App.
Users are added in the Users page under the Administration section. The large PLUS button will show all users in the Azure Active Directory (AAD), which can be selected and added. Users who shall have access to the Administration or Time Tracking areas must have the appropriate roles assigned.


The user must log in once for each browser and device. The login is saved and the user is automatically logged in on the next visit. If the user has only access to one area (Admin, Time Tracking), this area is opened. If the user has access to several areas, they must select an area. The last used company and environment are used, when logging in. Both are stored in the local storage (company = company, environment = instance). If the environment does not exist, e.g. because the environment has been deleted from the local storage, the user must log in again.


To create a client you need to have the Admin role assigned. Open the Administration section and navigate to the Clients page. Here you can create a new or edit existing ones. Select the PLUS button to add a client. Clients need a resource and roles just like users. To authenticate with a client add the key, that you can receive from the overview (Client Key), to your HTTP requests Authentication header. Your requests also need a X-Instance and X-Company header with your environment configuration.

Authorization: 'Bearer <TOKEN>'
X-Instance: 'Sandbox'
X-Company: 'CRONUS DE'

Roles and permissions

In DYCE Time Tracking permissions are granted via roles. Depending on the role, different areas are shown or hidden. Roles are assigned for each company individually. In order to assign a role, one or more users must be selected and the action Edit user roles (pen top right) must be called up. In the following dialog, roles can be assigned and removed for the selected users.


For users with Admin role assigned, the Administration section is visible. They are able to perform all setups without any restrictions. For the user who created a new company the Admin role is automatically assigned.


A user with the Admin role cannot revoke it or delete its own user.

Time recording

In order to capture times users have to have Time Recoding role assigned. Without this role, the Time Tracking section will not be visible to the user. In addition to the role, a resource must be assigned to the user. Resources are created in Business Central and times are captured for the assigned resource. Resources are assigned in the DYCE Web App in the User page.

All time recordings created for a resource are visible to the user(s) who have this resource assigned. Therefore, each user should be assigned a separate resource.

Users and resources

Users with no resource assigned will not get access to time tracking! If two users have the same resource, they see each other's time recordings. There is no way to distinguish these time recordings between these users.

Displaying the Exchange calendar

On the Calendar page, the Exchange calendar of the logged-in user is displayed, provided that the user has granted read permission. The first time the calendar is opened in the Time Tracking app, each user is asked for read permission for the Exchange calendar. If the user grants permission, all appointments from the Exchange calendar are displayed in Time Tracking and can be used for time recording. The appointments are not stored in the Time Tracking app and cannot be edited there.
The permission can also be granted subsequently in the Settings in the Time Recording tab. The permission cannot be revoked. Alternatively, an administrator can grant read permission for the entire organization. In this case, the individual users are no longer asked.

Status of synchronization

In the Synchronization page the status of the synchronization and the corresponding company in Business Central is displayed. The status can easily be recognized by the traffic light. Green signals that everything works as intended. Blue will be shown if one Heartbeat have been skipped. If the traffic light is on yellow there is at least one data record that could not be processed. If the traffic light shows red the synchronization cannot be reached. The unprocessed and unsent data can be opened directly in the Web App.

Delete DYCE company / environment

To delete an environment or client, please send the following information to

  • Tenant Id
  • Name of the environment
  • Client code
  • E Mail of the Admin (for queries)