diff --git a/en/asgardeo/docs/guides/users/manage-administrators.md b/en/asgardeo/docs/guides/users/manage-administrators.md index 010e330599..6c5e33ba62 100644 --- a/en/asgardeo/docs/guides/users/manage-administrators.md +++ b/en/asgardeo/docs/guides/users/manage-administrators.md @@ -23,19 +23,36 @@ Existing administrators can onboard other administrators by sending them email i !!! note If you have enabled the option to [assign admin privileges to users](#assign-admin-privileges-to-users), you may proceed to invite external admins by clicking *Add Administrator* > *Invite Admins to Asgardeo*. + {% if default_roles %} + - - + + - - + +
Email AddressThe invitation will be sent to this email address. Additionally, this email address will be used as the username of this administrator. - Usernames are always unique to an organization. Once created, they cannot be modified. - Email AddressThe invitation will be sent to this email address. Additionally, this email address will be used as the username of this administrator. Usernames are always unique to an organization. Once created, they cannot be modified.
RoleUsers can be assigned one or more default roles. For details on the available user roles and the permissions assigned to them, see [Asgardeo User Roles]({{base_path}}/references/user-management/user-roles/).RoleUsers can be assigned one or more default roles. For details on the available user roles and the permissions assigned to them, see [Asgardeo User Roles]({{base_path}}/references/user-management/user-roles/).
+ {% else %} + + + + + + + + + + +
Email AddressThe invitation will be sent to this email address. Additionally, this email address will be used as the username of this administrator. Usernames are always unique to an organization. Once created, they cannot be modified.
RoleThe Administrator role is assigned by default. For details on the available user roles and the permissions assigned to them, see [Asgardeo User Roles]({{base_path}}/references/user-management/user-roles/).
+ + {% endif %} + + +The Administrator role is assigned by default.
For details on the available user roles and the permissions assigned to them, see [Asgardeo User Roles]({{base_path}}/references/user-management/user-roles/). 3. Click **Invite** to send the invitation. The external administrator can join the organization by accepting the invitation and setting a password for the new administrator account. diff --git a/en/asgardeo/docs/references/user-management/user-roles.md b/en/asgardeo/docs/references/user-management/user-roles.md index 0d3339be79..bce26cb5ea 100644 --- a/en/asgardeo/docs/references/user-management/user-roles.md +++ b/en/asgardeo/docs/references/user-management/user-roles.md @@ -1,3 +1,5 @@ +{% if default_roles == true %} + # Asgardeo user roles Roles determine permissions for accessing Asgardeo resources such as functionalities in the Asgardeo Console and underline REST APIs. @@ -371,3 +373,317 @@ The following tables elaborate all the permissions enabled for the default roles
+ +{% else %} + +# Asgardeo user roles + +Roles consist of the permissions that are required by users to access the Asgardeo resources such as functions available on the Asgardeo Console, REST APIs, etc. + +When you assign a role to a user, you are controlling what the user can do in Asgardeo. + +By default, Asgardeo has the **Administrator** user role. This role includes all administrative permissions in the organization. An organization can have many users with the administrator role. An administrator is a privileged user who has overall access to the organization. + + +The following list contains the permissions enabled for an Administrator: + +## User management +- View users +- Onboard users +- Update user profiles +- Delete users +- Terminate sessions +- View groups +- Create groups +- Update and delete groups +- View assigned users to groups +- Assign users to groups +- Assign users to groups +- View roles +- Create roles +- Update and delete roles +- Assign users to roles +- Assign groups to roles +- +## Application management +- View apps and app settings +- Register apps +- Update and delete apps +- Update Sign-in methods +- Update protocol settings + +## Connections management +- View connections and connection settings +- Create new connection +- Update and delete connections + +## Organization management +- Create new organizations +- View all the organizations created +- As the organization creator, update and delete organizations that you created +- Switch to the organizations that you created +- Share applications from the organization (root) to its organizations + +## Managing attributes and scopes +- View attributes +- Create new attributes +- Update and delete attributes +- View scopes +- Add new attributes to scopes +- Update and delete scopes + +## Managing organization settings +- View account recovery scenario and settings +- Configure account recovery scenarios +- View self registration related settings +- Configure self registration for users +- View account security related settings and configurations +- Configure account security related settings + + +
+ +{% endif %} diff --git a/en/asgardeo/features.json b/en/asgardeo/features.json index 4d55f436af..ecb7d6438d 100644 --- a/en/asgardeo/features.json +++ b/en/asgardeo/features.json @@ -1,19 +1,7 @@ { - "asgardeo_logs": { - "enabled": true, + "default_roles": { + "enabled": false, "page": [ - "guides/asgardeo-logs/index.md", - "guides/asgardeo-logs/diagnostic-logs.md", - "guides/asgardeo-logs/audit-logs.md" - ] - }, - - "applications": { - "enabled": true, - "page": [ - "guides/applications/register-single-page-app.md", - "guides/applications/register-oidc-web-app.md", - "guides/applications/register-saml-web-app.md" ] } }