Roles

last updated: 2024-05-19

Role are privileges which can be assigned to identities.

All Roles are either privileges scoped to a context or to an identity. Each service can define their own roles and scopes.

Identity scoped Roles

Identity scoped roles are roles assigned to identities which give actions over itself or other identities.

For example,

  • assigning a password to an identity is a privilege. Not every user of an identity will have this privilege.
  • generating a api-key for an identity is a privilege. Not every user of an identity will have this privilege.

Sample Roles

Context scoped Roles

Context scoped roles are roles assigned to identities which give action over resources in a context.

For example,

  • update/deploy rss2email integration via the flows service
  • container deployments
  • access logs and metrics

Sample Roles