-
Notifications
You must be signed in to change notification settings - Fork 0
Authorization
Rico Suter edited this page Jul 2, 2021
·
32 revisions
Rules:
- Permissions assigned to the user "Everyone" apply to all users and also unauthenticated/anonymous users.
- Permissions assigned on an Organization level also apply for all its Projects.
Summary:
- Consumer: Can view public entities
- Stakeholder: Can view public and private entities
- Manager: Can edit entities
- Admin: Can edit security related entities
Projects
- Can only view public services and environments
Comments
- Can view and create comments of type "Question" and "Issue"
Package Feeds
- Can only view public packages (not implemented yet)
In a free (non-premium) or open source project everyone is a Stakeholder and you cannot delete the role assignment to “Everyone” until you pay for a project subscription.
Projects
- Can view all public and private services and environments
- Can view all repositories
- Can view all activity logs and notes (e.g. service deployment notes)
- Can view all logs (Application Insights or Seq)
Comments
- Can close comments
- Can view and create comments of type "Review", "Question" or "Issue"
Package Feeds
- Can view all package feeds and packages
Projects
- Can view and edit all services, environments and other entities
Package Feeds
- Can change the visibility of a package (private/public)
- Has all permissions from the other roles
- Can change Project settings
- Can manage security and payment features
- Can create new package feeds in the organization (requires at least one premium project in the organization)
- Can edit project recommenders