diff --git a/src/pages/docs/security/users-and-teams/default-permissions.md b/src/pages/docs/security/users-and-teams/default-permissions.md index d61355546..3984425f9 100644 --- a/src/pages/docs/security/users-and-teams/default-permissions.md +++ b/src/pages/docs/security/users-and-teams/default-permissions.md @@ -1,7 +1,7 @@ --- layout: src/layouts/Default.astro pubDate: 2023-01-01 -modDate: 2023-01-01 +modDate: 2024-11-26 title: Default permissions for built-in user roles description: A listing of the default permissions for each of the built-in user roles. --- @@ -10,6 +10,8 @@ description: A listing of the default permissions for each of the built-in user | Space Permission | Description | | --------------------------- | ---------------------------------------- | +| BuildInformationAdminister | Replace or delete build information | +| BuildInformationPush | Create/update build information | | BuiltInFeedAdminister | Replace or delete packages in the built-in package repository | | BuiltInFeedDownload | Retrieve the contents of packages in the built-in package repository | | BuiltInFeedPush | Push new packages to the built-in package repository | @@ -19,28 +21,26 @@ description: A listing of the default permissions for each of the built-in user | FeedView | View package feeds and the packages in them | | LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | -| BuildInformationPush | Create/update build information | -| BuildInformationAdminister | Replace or delete build information | | ProcessView | View the deployment process and channels associated with a project | | ProjectView | View the details of projects | | ReleaseCreate | Create a release for a project | | ReleaseView | View a release of a project | -| TaskView | View summary-level information associated with a task | -| TenantView | View tenants | -| RunbookView | View runbooks | | RunbookEdit | Edit runbooks | -| RunbookRunView | View runbook runs | | RunbookRunCreate | Create runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskView | View summary-level information associated with a task | +| TenantView | View tenants | ## Certificate Manager {#DefaultPermissions-CertificateManager} | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| CertificateView | View certificates | | CertificateCreate | Create certificates | -| CertificateEdit | Edit certificates | | CertificateDelete | Delete certificates | +| CertificateEdit | Edit certificates | | CertificateExportPrivateKey | Export certificate private-keys | +| CertificateView | View certificates | | EnvironmentView | View environments | | TenantView | View tenants | @@ -51,16 +51,16 @@ description: A listing of the default permissions for each of the built-in user | DeploymentCreate | Deploy releases to target environments | | DeploymentView | View deployments | | EnvironmentView | View environments | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | ProcessView | View the deployment process and channels associated with a project | | ProjectView | View the details of projects | | ReleaseView | View a release of a project | +| RunbookRunCreate | Create runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | | TaskView | View summary-level information associated with a task | | TenantView | View tenants | -| LibraryVariableSetView | View library variable sets | -| RunbookView | View runbooks | -| RunbookRunView | View runbook runs | -| RunbookRunCreate | Create runbook runs | ## Environment Manager {#DefaultPermissions-EnvironmentManager} @@ -70,32 +70,32 @@ description: A listing of the default permissions for each of the built-in user | Space Permission | Description | | --------------------------- | ---------------------------------------- | +| AccountCreate | Create accounts | +| AccountDelete | Delete accounts | +| AccountEdit | Edit accounts | +| AccountView | View accounts | +| CertificateView | View certificates | | EnvironmentCreate | Create environments | -| EnvironmentEdit | Edit environments | | EnvironmentDelete | Delete environments | +| EnvironmentEdit | Edit environments | +| EnvironmentView | View environments | | MachineCreate | Create machines | -| MachineEdit | Edit machines | | MachineDelete | Delete machines | -| TaskCreate | Explicitly create (run) server tasks | -| TaskCancel | Cancel server tasks | -| AccountCreate | Create accounts | -| AccountEdit | Edit accounts | -| AccountDelete | Delete accounts | -| ProxyCreate | Create proxies | -| ProxyEdit | Edit proxies | -| ProxyDelete | Delete proxies | +| MachineEdit | Edit machines | | MachinePolicyCreate | Create health check policies | -| MachinePolicyEdit | Edit health check policies | | MachinePolicyDelete | Delete health check policies | -| WorkerEdit | Edit workers and worker pools | -| EnvironmentView | View environments | +| MachinePolicyEdit | Edit health check policies | +| MachinePolicyView | View health check policies | | MachineView | View machines | +| ProxyCreate | Create proxies | +| ProxyDelete | Delete proxies | +| ProxyEdit | Edit proxies | +| ProxyView | View proxies | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | | TaskView | View summary-level information associated with a task | | TeamView | View teams | -| AccountView | View accounts | -| MachinePolicyView | View health check policies | -| CertificateView | View certificates | -| ProxyView | View proxies | +| WorkerEdit | Edit workers and worker pools | | WorkerView | View the workers in worker pools | ## Environment Viewer {#DefaultPermissions-EnvironmentViewer} @@ -106,25 +106,25 @@ description: A listing of the default permissions for each of the built-in user | Space Permission | Description | | --------------------------- | ---------------------------------------- | +| AccountView | View accounts | +| CertificateView | View certificates | | EnvironmentView | View environments | +| MachinePolicyView | View health check policies | | MachineView | View machines | +| ProxyView | View proxies | | TaskView | View summary-level information associated with a task | | TeamView | View teams | -| AccountView | View accounts | -| MachinePolicyView | View health check policies | -| CertificateView | View certificates | -| ProxyView | View proxies | | WorkerView | View the workers in worker pools | ## Insights Report Manager {#DefaultPermissions-InsightsReportManager} | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| InsightsReportView | View Insights reports | +| EnvironmentView | View environments | | InsightsReportCreate | Create Insights reports | -| InsightsReportEdit | Edit Insights reports | | InsightsReportDelete | Delete Insights reports | -| EnvironmentView | View environments | +| InsightsReportEdit | Edit Insights reports | +| InsightsReportView | View Insights reports | | ProcessView | View the deployment process and channels associated with a project | | ProjectGroupView | View project groups | | ProjectView | View the details of projects | @@ -134,242 +134,242 @@ description: A listing of the default permissions for each of the built-in user | Space Permission | Description | | --------------------------- | ---------------------------------------- | +| BuildInformationAdminister | Replace or delete build information | +| BuildInformationPush | Create/update build information | | BuiltInFeedAdminister | Replace or delete packages in the built-in package repository | | BuiltInFeedDownload | Retrieve the contents of packages in the built-in package repository | | BuiltInFeedPush | Push new packages to the built-in package repository | | FeedView | View package feeds and the packages in them | -| BuildInformationPush | Create/update build information | -| BuildInformationAdminister | Replace or delete build information | ## Project Contributor {#DefaultPermissions-ProjectContributor} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ArtifactCreate | Manually create artifacts | -| ActionTemplateView | View step templates | | ActionTemplateCreate | Create step templates | -| ActionTemplateEdit | Edit step templates | | ActionTemplateDelete | Delete step templates | -| ProcessEdit | Edit the deployment process and channels associated with a project | -| ProjectEdit | Edit project details | -| FeedView | View package feeds and the packages in them | -| LibraryVariableSetCreate | Create library variable sets | -| LibraryVariableSetEdit | Edit library variable sets | -| LibraryVariableSetDelete | Delete library variable sets | -| TaskCreate | Explicitly create (run) server tasks | -| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | -| MachineView | View machines | +| ActionTemplateEdit | Edit step templates | +| ActionTemplateView | View step templates | +| ArtifactCreate | Manually create artifacts | +| ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | | DefectReport | Block a release from progressing to the next lifecycle phase | | DefectResolve | Unblock a release so it can progress to the next phase | -| VariableView | View variables belonging to a project or library variable set | -| VariableEdit | Edit variables belonging to a project | -| TriggerCreate | Create triggers | -| TriggerDelete | Delete triggers | -| TriggerEdit | Edit triggers | -| RunbookView | View runbooks | -| RunbookEdit | Edit runbooks | -| ReleaseView | View a release of a project | -| ProjectView | View the details of projects | | DeploymentView | View deployments | -| ProcessView | View the deployment process and channels associated with a project | | EnvironmentView | View environments | -| ArtifactView | View the artifacts created manually and during deployment | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | -| TaskView | View summary-level information associated with a task | +| FeedView | View package feeds and the packages in them | | InterruptionView | View interruptions generated during deployments | +| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | +| LibraryVariableSetCreate | Create library variable sets | +| LibraryVariableSetDelete | Delete library variable sets | +| LibraryVariableSetEdit | Edit library variable sets | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | +| MachineView | View machines | +| ProcessEdit | Edit the deployment process and channels associated with a project | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectEdit | Edit project details | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| ReleaseView | View a release of a project | +| RunbookEdit | Edit runbooks | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | | TenantView | View tenants | +| TriggerCreate | Create triggers | +| TriggerDelete | Delete triggers | +| TriggerEdit | Edit triggers | | TriggerView | View triggers | -| CertificateView | View certificates | -| RunbookRunView | View runbook runs | +| VariableEdit | Edit variables belonging to a project | +| VariableView | View variables belonging to a project or library variable set | ## Project Deployer {#DefaultPermissions-ProjectDeployer} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| DeploymentCreate | Deploy releases to target environments | -| InterruptionSubmit | Take responsibility for and submit interruptions generated during deployments | -| TaskCancel | Cancel server tasks | -| RunbookRunCreate | Create runbook runs | -| ArtifactCreate | Manually create artifacts | -| ActionTemplateView | View step templates | | ActionTemplateCreate | Create step templates | -| ActionTemplateEdit | Edit step templates | | ActionTemplateDelete | Delete step templates | -| ProcessEdit | Edit the deployment process and channels associated with a project | -| ProjectEdit | Edit project details | -| FeedView | View package feeds and the packages in them | -| LibraryVariableSetCreate | Create library variable sets | -| LibraryVariableSetEdit | Edit library variable sets | -| LibraryVariableSetDelete | Delete library variable sets | -| TaskCreate | Explicitly create (run) server tasks | -| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | -| MachineView | View machines | +| ActionTemplateEdit | Edit step templates | +| ActionTemplateView | View step templates | +| ArtifactCreate | Manually create artifacts | +| ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | | DefectReport | Block a release from progressing to the next lifecycle phase | | DefectResolve | Unblock a release so it can progress to the next phase | -| VariableView | View variables belonging to a project or library variable set | -| VariableEdit | Edit variables belonging to a project | -| TriggerCreate | Create triggers | -| TriggerDelete | Delete triggers | -| TriggerEdit | Edit triggers | -| RunbookView | View runbooks | -| RunbookEdit | Edit runbooks | -| ReleaseView | View a release of a project | -| ProjectView | View the details of projects | +| DeploymentCreate | Deploy releases to target environments | | DeploymentView | View deployments | -| ProcessView | View the deployment process and channels associated with a project | | EnvironmentView | View environments | -| ArtifactView | View the artifacts created manually and during deployment | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | -| TaskView | View summary-level information associated with a task | +| FeedView | View package feeds and the packages in them | +| InterruptionSubmit | Take responsibility for and submit interruptions generated during deployments | | InterruptionView | View interruptions generated during deployments | +| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | +| LibraryVariableSetCreate | Create library variable sets | +| LibraryVariableSetDelete | Delete library variable sets | +| LibraryVariableSetEdit | Edit library variable sets | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | +| MachineView | View machines | +| ProcessEdit | Edit the deployment process and channels associated with a project | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectEdit | Edit project details | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| ReleaseView | View a release of a project | +| RunbookEdit | Edit runbooks | +| RunbookRunCreate | Create runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | | TenantView | View tenants | +| TriggerCreate | Create triggers | +| TriggerDelete | Delete triggers | +| TriggerEdit | Edit triggers | | TriggerView | View triggers | -| CertificateView | View certificates | -| RunbookRunView | View runbook runs | +| VariableEdit | Edit variables belonging to a project | +| VariableView | View variables belonging to a project or library variable set | ## Project Initiator {#DefaultPermissions-ProjectInitiator} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ProjectCreate | Create projects | -| ProjectEdit | Edit project details | -| ProjectDelete | Delete projects | +| ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | | DefectReport | Block a release from progressing to the next lifecycle phase | | DefectResolve | Unblock a release so it can progress to the next phase | -| ReleaseView | View a release of a project | -| ProjectView | View the details of projects | | DeploymentView | View deployments | -| ProcessView | View the deployment process and channels associated with a project | | EnvironmentView | View environments | -| ArtifactView | View the artifacts created manually and during deployment | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | -| TaskView | View summary-level information associated with a task | | InterruptionView | View interruptions generated during deployments | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectCreate | Create projects | +| ProjectDelete | Delete projects | +| ProjectEdit | Edit project details | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| ReleaseView | View a release of a project | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | | TenantView | View tenants | | TriggerView | View triggers | -| CertificateView | View certificates | -| RunbookView | View runbooks | -| RunbookRunView | View runbook runs | ## Project Lead {#DefaultPermissions-ProjectLead} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ReleaseCreate | Create a release for a project | -| ReleaseEdit | Edit a release of a project | -| ReleaseDelete | Delete a release of a project | -| ArtifactEdit | Edit the details describing artifacts | -| ArtifactDelete | Delete artifacts | -| ArtifactCreate | Manually create artifacts | -| ActionTemplateView | View step templates | | ActionTemplateCreate | Create step templates | -| ActionTemplateEdit | Edit step templates | | ActionTemplateDelete | Delete step templates | -| ProcessEdit | Edit the deployment process and channels associated with a project | -| ProjectEdit | Edit project details | -| FeedView | View package feeds and the packages in them | -| LibraryVariableSetCreate | Create library variable sets | -| LibraryVariableSetEdit | Edit library variable sets | -| LibraryVariableSetDelete | Delete library variable sets | -| TaskCreate | Explicitly create (run) server tasks | -| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | -| MachineView | View machines | -| DefectReport | Block a release from progressing to the next lifecycle phase | -| DefectResolve | Unblock a release so it can progress to the next phase | -| VariableView | View variables belonging to a project or library variable set | -| VariableEdit | Edit variables belonging to a project | -| TriggerCreate | Create triggers | -| TriggerDelete | Delete triggers | -| TriggerEdit | Edit triggers | -| RunbookView | View runbooks | -| RunbookEdit | Edit runbooks | -| ReleaseView | View a release of a project | -| ProjectView | View the details of projects | +| ActionTemplateEdit | Edit step templates | +| ActionTemplateView | View step templates | +| ArtifactCreate | Manually create artifacts | +| ArtifactDelete | Delete artifacts | +| ArtifactEdit | Edit the details describing artifacts | +| ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | +| DefectReport | Block a release from progressing to the next lifecycle phase | +| DefectResolve | Unblock a release so it can progress to the next phase | | DeploymentView | View deployments | -| ProcessView | View the deployment process and channels associated with a project | | EnvironmentView | View environments | -| ArtifactView | View the artifacts created manually and during deployment | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | -| TaskView | View summary-level information associated with a task | +| FeedView | View package feeds and the packages in them | | InterruptionView | View interruptions generated during deployments | +| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | +| LibraryVariableSetCreate | Create library variable sets | +| LibraryVariableSetDelete | Delete library variable sets | +| LibraryVariableSetEdit | Edit library variable sets | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | +| MachineView | View machines | +| ProcessEdit | Edit the deployment process and channels associated with a project | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectEdit | Edit project details | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| ReleaseCreate | Create a release for a project | +| ReleaseDelete | Delete a release of a project | +| ReleaseEdit | Edit a release of a project | +| ReleaseView | View a release of a project | +| RunbookEdit | Edit runbooks | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | | TenantView | View tenants | +| TriggerCreate | Create triggers | +| TriggerDelete | Delete triggers | +| TriggerEdit | Edit triggers | | TriggerView | View triggers | -| CertificateView | View certificates | -| RunbookRunView | View runbook runs | +| VariableEdit | Edit variables belonging to a project | +| VariableView | View variables belonging to a project or library variable set | ## Project Viewer {#DefaultPermissions-ProjectViewer} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ReleaseView | View a release of a project | -| ProjectView | View the details of projects | +| ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | | DeploymentView | View deployments | -| ProcessView | View the deployment process and channels associated with a project | | EnvironmentView | View environments | -| ArtifactView | View the artifacts created manually and during deployment | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | -| TaskView | View summary-level information associated with a task | | InterruptionView | View interruptions generated during deployments | +| LibraryVariableSetView | View library variable sets | | LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| ReleaseView | View a release of a project | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | | TenantView | View tenants | | TriggerView | View triggers | -| CertificateView | View certificates | -| RunbookView | View runbooks | -| RunbookRunView | View runbook runs | ## Release Creator {#DefaultPermissions-ReleaseCreator} @@ -381,197 +381,197 @@ description: A listing of the default permissions for each of the built-in user | ProjectView | View the details of projects | | ReleaseCreate | Create a release for a project | | ReleaseView | View a release of a project | -| RunbookView | View runbooks | | RunbookEdit | Edit runbooks | +| RunbookView | View runbooks | ## Runbook Consumer {#DefaultPermissions-RunbookConsumer} | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ProjectView | View the details of projects | -| EnvironmentView | View environments | | ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | +| EnvironmentView | View environments | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | | FeedView | View package feeds and the packages in them | -| TaskView | View summary-level information associated with a task | | InterruptionView | View interruptions generated during deployments | +| LibraryVariableSetView | View library variable sets | | MachinePolicyView | View health check policies | -| TenantView | View tenants | -| TriggerView | View triggers | -| CertificateView | View certificates | | MachineView | View machines | -| RunbookView | View runbooks | -| RunbookRunView | View runbook runs | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | | RunbookRunCreate | Create runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | +| TenantView | View tenants | +| TriggerView | View triggers | ## Runbook Producer {#DefaultPermissions-RunbookProducer} | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ProjectCreate | Create projects | -| ProjectEdit | Edit project details | -| ProjectDelete | Delete projects | -| LifecycleView | View lifecycles | -| ActionTemplateView | View step templates | | ActionTemplateCreate | Create step templates | -| ActionTemplateEdit | Edit step templates | | ActionTemplateDelete | Delete step templates | -| LibraryVariableSetCreate | Create library variable sets | -| LibraryVariableSetEdit | Edit library variable sets | -| LibraryVariableSetDelete | Delete library variable sets | -| TaskCreate | Explicitly create (run) server tasks | -| TaskCancel | Cancel server tasks | -| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | -| VariableView | View variables belonging to a project or library variable set | -| VariableEdit | Edit variables belonging to a project | -| TriggerCreate | Create triggers | -| TriggerDelete | Delete triggers | -| TriggerEdit | Edit triggers | -| RunbookEdit | Edit runbooks | -| RunbookRunDelete | Delete runbook runs | +| ActionTemplateEdit | Edit step templates | +| ActionTemplateView | View step templates | | ArtifactCreate | Manually create artifacts | -| ArtifactEdit | Edit the details describing artifacts | | ArtifactDelete | Delete artifacts | -| InterruptionSubmit | Take responsibility for and submit interruptions generated during deployments | -| ProjectView | View the details of projects | -| EnvironmentView | View environments | +| ArtifactEdit | Edit the details describing artifacts | | ArtifactView | View the artifacts created manually and during deployment | +| CertificateView | View certificates | +| EnvironmentView | View environments | | EventView | View Events, including access to the Audit screen | -| ProjectGroupView | View project groups | -| LibraryVariableSetView | View library variable sets | -| TeamView | View teams | | FeedView | View package feeds and the packages in them | -| TaskView | View summary-level information associated with a task | +| InterruptionSubmit | Take responsibility for and submit interruptions generated during deployments | | InterruptionView | View interruptions generated during deployments | +| InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | +| LibraryVariableSetCreate | Create library variable sets | +| LibraryVariableSetDelete | Delete library variable sets | +| LibraryVariableSetEdit | Edit library variable sets | +| LibraryVariableSetView | View library variable sets | +| LifecycleView | View lifecycles | | MachinePolicyView | View health check policies | -| TenantView | View tenants | -| TriggerView | View triggers | -| CertificateView | View certificates | | MachineView | View machines | -| RunbookView | View runbooks | -| RunbookRunView | View runbook runs | +| ProjectCreate | Create projects | +| ProjectDelete | Delete projects | +| ProjectEdit | Edit project details | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | +| RunbookEdit | Edit runbooks | | RunbookRunCreate | Create runbook runs | +| RunbookRunDelete | Delete runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskView | View summary-level information associated with a task | +| TeamView | View teams | +| TenantView | View tenants | +| TriggerCreate | Create triggers | +| TriggerDelete | Delete triggers | +| TriggerEdit | Edit triggers | +| TriggerView | View triggers | +| VariableEdit | Edit variables belonging to a project | +| VariableView | View variables belonging to a project or library variable set | ## Space Manager {#DefaultPermissions-SpaceManager} | System Permission | Description | | --------------------------- | ---------------------------------------- | | TeamView | View teams | -| UserView | View users | | UserRoleView | View other user's roles | +| UserView | View users | | Space Permission | Description | | --------------------------- | ---------------------------------------- | -| ProjectEdit | Edit project details | -| ProjectView | View the details of projects | -| ProjectCreate | Create projects | -| ProjectDelete | Delete projects | -| ProcessView | View the deployment process and channels associated with a project | -| ProcessEdit | Edit the deployment process and channels associated with a project | -| VariableEdit | Edit variables belonging to a project | -| VariableEditUnscoped | Edit non-environment scoped variables belonging to a project or library variable set | -| VariableView | View variables belonging to a project or library variable set | -| VariableViewUnscoped | View non-environment scoped variables belonging to a project or library variable set | -| ReleaseCreate | Create a release for a project | -| ReleaseView | View a release of a project | -| ReleaseEdit | Edit a release of a project | -| ReleaseDelete | Delete a release of a project | +| AccountCreate | Create accounts | +| AccountDelete | Delete accounts | +| AccountEdit | Edit accounts | +| AccountView | View accounts | +| ActionTemplateCreate | Create step templates | +| ActionTemplateDelete | Delete step templates | +| ActionTemplateEdit | Edit step templates | +| ActionTemplateView | View step templates | +| ArtifactCreate | Manually create artifacts | +| ArtifactDelete | Delete artifacts | +| ArtifactEdit | Edit the details describing artifacts | +| ArtifactView | View the artifacts created manually and during deployment | +| BuildInformationAdminister | Replace or delete build information | +| BuildInformationPush | Create/update build information | +| BuiltInFeedAdminister | Replace or delete packages in the built-in package repository | +| BuiltInFeedDownload | Retrieve the contents of packages in the built-in package repository | +| BuiltInFeedPush | Push new packages to the built-in package repository | +| CertificateCreate | Create certificates | +| CertificateDelete | Delete certificates | +| CertificateEdit | Edit certificates | +| CertificateExportPrivateKey | Export certificate private-keys | +| CertificateView | View certificates | | DefectReport | Block a release from progressing to the next lifecycle phase | | DefectResolve | Unblock a release so it can progress to the next phase | | DeploymentCreate | Deploy releases to target environments | | DeploymentDelete | Delete deployments | | DeploymentView | View deployments | -| EnvironmentView | View environments | | EnvironmentCreate | Create environments | -| EnvironmentEdit | Edit environments | | EnvironmentDelete | Delete environments | -| MachineCreate | Create machines | -| MachineEdit | Edit machines | -| MachineView | View machines | -| MachineDelete | Delete machines | -| ArtifactView | View the artifacts created manually and during deployment | -| ArtifactCreate | Manually create artifacts | -| ArtifactEdit | Edit the details describing artifacts | -| ArtifactDelete | Delete artifacts | -| FeedView | View package feeds and the packages in them | +| EnvironmentEdit | Edit environments | +| EnvironmentView | View environments | +| EventView | View Events, including access to the Audit screen | | FeedEdit | Edit feeds | -| GitCredentialView | View Git credentials | +| FeedView | View package feeds and the packages in them | | GitCredentialEdit | Edit Git credentials | -| EventView | View Events, including access to the Audit screen | -| LibraryVariableSetView | View library variable sets | -| LibraryVariableSetCreate | Create library variable sets | -| LibraryVariableSetEdit | Edit library variable sets | -| LibraryVariableSetDelete | Delete library variable sets | -| ProjectGroupView | View project groups | -| ProjectGroupCreate | Create project groups | -| ProjectGroupEdit | Edit project groups | -| ProjectGroupDelete | Delete project groups | -| TeamCreate | Create teams | -| TeamView | View teams | -| TeamEdit | Edit teams | -| TeamDelete | Delete teams | -| TaskView | View summary-level information associated with a task | -| TaskCreate | Explicitly create (run) server tasks | -| TaskCancel | Cancel server tasks | -| TaskEdit | Edit server tasks | -| InterruptionView | View interruptions generated during deployments | +| GitCredentialView | View Git credentials | | InterruptionSubmit | Take responsibility for and submit interruptions generated during deployments | +| InterruptionView | View interruptions generated during deployments | | InterruptionViewSubmitResponsible | Take responsibility for and submit interruptions generated during deployments when the user is in a designated responsible team | -| BuiltInFeedPush | Push new packages to the built-in package repository | -| BuiltInFeedAdminister | Replace or delete packages in the built-in package repository | -| BuiltInFeedDownload | Retrieve the contents of packages in the built-in package repository | -| ActionTemplateView | View step templates | -| ActionTemplateCreate | Create step templates | -| ActionTemplateEdit | Edit step templates | -| ActionTemplateDelete | Delete step templates | +| LibraryVariableSetCreate | Create library variable sets | +| LibraryVariableSetDelete | Delete library variable sets | +| LibraryVariableSetEdit | Edit library variable sets | +| LibraryVariableSetView | View library variable sets | | LifecycleCreate | Create lifecycles | -| LifecycleView | View lifecycles | -| LifecycleEdit | Edit lifecycles | | LifecycleDelete | Delete lifecycles | -| AccountView | View accounts | -| AccountEdit | Edit accounts | -| AccountCreate | Create accounts | -| AccountDelete | Delete accounts | -| TenantCreate | Create tenants | -| TenantEdit | Edit tenants | -| TenantView | View tenants | -| TenantDelete | Delete tenants | -| TagSetCreate | Create tag sets | -| TagSetEdit | Edit tag sets | -| TagSetDelete | Delete tag sets | +| LifecycleEdit | Edit lifecycles | +| LifecycleView | View lifecycles | +| MachineCreate | Create machines | +| MachineDelete | Delete machines | +| MachineEdit | Edit machines | | MachinePolicyCreate | Create health check policies | -| MachinePolicyView | View health check policies | -| MachinePolicyEdit | Edit health check policies | | MachinePolicyDelete | Delete health check policies | +| MachinePolicyEdit | Edit health check policies | +| MachinePolicyView | View health check policies | +| MachineView | View machines | +| ProcessEdit | Edit the deployment process and channels associated with a project | +| ProcessView | View the deployment process and channels associated with a project | +| ProjectCreate | Create projects | +| ProjectDelete | Delete projects | +| ProjectEdit | Edit project details | +| ProjectGroupCreate | Create project groups | +| ProjectGroupDelete | Delete project groups | +| ProjectGroupEdit | Edit project groups | +| ProjectGroupView | View project groups | +| ProjectView | View the details of projects | | ProxyCreate | Create proxies | -| ProxyView | View proxies | -| ProxyEdit | Edit proxies | | ProxyDelete | Delete proxies | +| ProxyEdit | Edit proxies | +| ProxyView | View proxies | +| ReleaseCreate | Create a release for a project | +| ReleaseDelete | Delete a release of a project | +| ReleaseEdit | Edit a release of a project | +| ReleaseView | View a release of a project | +| RunbookEdit | Edit runbooks | +| RunbookRunCreate | Create runbook runs | +| RunbookRunDelete | Delete runbook runs | +| RunbookRunView | View runbook runs | +| RunbookView | View runbooks | | SubscriptionCreate | Create subscriptions | -| SubscriptionView | View subscriptions | -| SubscriptionEdit | Edit subscriptions | | SubscriptionDelete | Delete subscriptions | +| SubscriptionEdit | Edit subscriptions | +| SubscriptionView | View subscriptions | +| TagSetCreate | Create tag sets | +| TagSetDelete | Delete tag sets | +| TagSetEdit | Edit tag sets | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskEdit | Edit server tasks | +| TaskView | View summary-level information associated with a task | +| TeamCreate | Create teams | +| TeamDelete | Delete teams | +| TeamEdit | Edit teams | +| TeamView | View teams | +| TenantCreate | Create tenants | +| TenantDelete | Delete tenants | +| TenantEdit | Edit tenants | +| TenantView | View tenants | | TriggerCreate | Create triggers | -| TriggerView | View triggers | -| TriggerEdit | Edit triggers | | TriggerDelete | Delete triggers | -| CertificateView | View certificates | -| CertificateCreate | Create certificates | -| CertificateEdit | Edit certificates | -| CertificateDelete | Delete certificates | -| CertificateExportPrivateKey | Export certificate private-keys | -| WorkerView | View the workers in worker pools | +| TriggerEdit | Edit triggers | +| TriggerView | View triggers | +| VariableEdit | Edit variables belonging to a project | +| VariableEditUnscoped | Edit non-environment scoped variables belonging to a project or library variable set | +| VariableView | View variables belonging to a project or library variable set | +| VariableViewUnscoped | View non-environment scoped variables belonging to a project or library variable set | | WorkerEdit | Edit workers and worker pools | -| BuildInformationPush | Create/update build information | -| BuildInformationAdminister | Replace or delete build information | -| RunbookView | View runbooks | -| RunbookEdit | Edit runbooks | -| RunbookRunView | View runbook runs | -| RunbookRunDelete | Delete runbook runs | -| RunbookRunCreate | Create runbook runs | +| WorkerView | View the workers in worker pools | ## System Administrator {#DefaultPermissions-SystemAdministrator} @@ -582,23 +582,23 @@ description: A listing of the default permissions for each of the built-in user | EventRetentionDelete | Delete archived event files | | EventRetentionView | View/list archived event files | | EventView | View Events, including access to the Audit screen | -| TeamCreate | Create teams | -| TeamView | View teams | -| TeamEdit | Edit teams | -| TeamDelete | Delete teams | -| TaskView | View summary-level information associated with a task | -| TaskCreate | Explicitly create (run) server tasks | -| TaskCancel | Cancel server tasks | -| TaskEdit | Edit server tasks | -| SpaceView | View spaces | -| SpaceEdit | Edit spaces | | SpaceCreate | Create spaces | | SpaceDelete | Delete spaces | -| UserView | View users | +| SpaceEdit | Edit spaces | +| SpaceView | View spaces | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskEdit | Edit server tasks | +| TaskView | View summary-level information associated with a task | +| TeamCreate | Create teams | +| TeamDelete | Delete teams | +| TeamEdit | Edit teams | +| TeamView | View teams | +| UserEdit | Edit users | | UserInvite | Invite users to register accounts | -| UserRoleView | View other user's roles | | UserRoleEdit | Edit user role definitions | -| UserEdit | Edit users | +| UserRoleView | View other user's roles | +| UserView | View users | ## System Manager {#DefaultPermissions-SystemManager} @@ -608,29 +608,29 @@ description: A listing of the default permissions for each of the built-in user | EventRetentionDelete | Delete archived event files | | EventRetentionView | View/list archived event files | | EventView | View Events, including access to the Audit screen | -| TeamCreate | Create teams | -| TeamView | View teams | -| TeamEdit | Edit teams | -| TeamDelete | Delete teams | -| TaskView | View summary-level information associated with a task | -| TaskCreate | Explicitly create (run) server tasks | -| TaskCancel | Cancel server tasks | -| TaskEdit | Edit server tasks | -| SpaceView | View spaces | -| SpaceEdit | Edit spaces | | SpaceCreate | Create spaces | | SpaceDelete | Delete spaces | -| UserView | View users | +| SpaceEdit | Edit spaces | +| SpaceView | View spaces | +| TaskCancel | Cancel server tasks | +| TaskCreate | Explicitly create (run) server tasks | +| TaskEdit | Edit server tasks | +| TaskView | View summary-level information associated with a task | +| TeamCreate | Create teams | +| TeamDelete | Delete teams | +| TeamEdit | Edit teams | +| TeamView | View teams | +| UserEdit | Edit users | | UserInvite | Invite users to register accounts | -| UserRoleView | View other user's roles | | UserRoleEdit | Edit user role definitions | -| UserEdit | Edit users | +| UserRoleView | View other user's roles | +| UserView | View users | ## Tenant Manager {#DefaultPermissions-TenantManager} | Space Permission | Description | | --------------------------- | ---------------------------------------- | | TenantCreate | Create tenants | -| TenantEdit | Edit tenants | | TenantDelete | Delete tenants | +| TenantEdit | Edit tenants | | TenantView | View tenants | \ No newline at end of file