Roles
last updated: 2024-05-19
Role are privileges which can be assigned to identities
.
All Roles are either privileges scoped to a context
or to an identity
. Each service can define their own roles and scopes.
Identity scoped Roles
Identity scoped roles are roles assigned to identities which give actions over itself or other identities.
For example,
- assigning a password to an identity is a privilege. Not every user of an identity will have this privilege.
- generating a api-key for an identity is a privilege. Not every user of an identity will have this privilege.
Sample Roles
Context scoped Roles
Context scoped roles are roles assigned to identities which give action over resources in a context
.
For example,
- update/deploy rss2email integration via the flows service
- container deployments
- access logs and metrics
Sample Roles