From a5e9d724dd606db44b103f2b9f003c2af4deea9c Mon Sep 17 00:00:00 2001 From: msm1992 Date: Tue, 29 Oct 2024 16:59:17 +0530 Subject: [PATCH 1/2] Update 4.2.0 Internal Role Scopes and Mappings --- .../managing-permissions.md | 142 +++++++++++------- 1 file changed, 88 insertions(+), 54 deletions(-) diff --git a/en/docs/administer/managing-users-and-roles/managing-permissions.md b/en/docs/administer/managing-users-and-roles/managing-permissions.md index 20e46d9414..b52c371881 100644 --- a/en/docs/administer/managing-users-and-roles/managing-permissions.md +++ b/en/docs/administer/managing-users-and-roles/managing-permissions.md @@ -189,57 +189,91 @@ Additionally, all permissions listed under Admin/Monitor in the ![Add Custom Scope Mapping]({{base_path}}/assets/img/administer/new-custom-scope-mapping.png) !!! info - The following are the scopes allowed for each default Internal role under the default configurations. - - | **Role** | **admin** | **Internal/publisher** | **Internal/creator** | **Internal/subscriber** | **Internal/analytics** | **Internal/everyone** | **Internal/devops** | **Internal/integration_dev** | - |-- ------------------------------------ | ------- | -------------------- | ------------------ | --------------------- | -------------------- | ----------------- --| ----------------- --| ----------------- --| - | apim:api_publish | ✓ | ✓ | | | | | ✓ | | - | apim:api_create | ✓ | | ✓ | | | | ✓ | | - | apim:api_view | ✓ | ✓ | ✓ | | ✓ | | | | - | apim:api_delete | ✓ | | ✓ | | | | | | - | apim:subscribe | ✓ | | | ✓ | | | ✓ | | - | apim:tier_view | ✓ | ✓ | ✓ | | | | | | - | apim:tier_manage | ✓ | | | | | | | | - | apim:bl_view | ✓ | | | | | | | | - | apim:subscription_view | ✓ | ✓ | ✓ | | | | | | - | apim:subscription_block | ✓ | ✓ | | | | | | | - | apim:mediation_policy_view | ✓ | | ✓ | | | | | | - | apim:mediation_policy_create | ✓ | | ✓ | | | | | | - | apim:api_workflow | ✓ | | | | | | | | - | apim:app_owner_change | ✓ | | | | | | | | - | apim:app_import_export | ✓ | | | | | | | | - | apim:api_import_export | ✓ | | | | | | | | - | apim:label_manage | ✓ | | | | | | | | - | apim:label_read | ✓ | | | | | | | | - | apim:app_update | ✓ | | | ✓ | | | | | - | apim:app_manage | ✓ | | | ✓ | | | | | - | apim:sub_manage | ✓ | | | ✓ | | | | | - | apim:monetization_usage_publish | ✓ | ✓ | | | | | | | - | apim:document_create | ✓ | ✓ | ✓ | | | | | | - | apim:ep_certificates_update | ✓ | | ✓ | | | | | | - | apim:client_certificates_update | ✓ | | ✓ | | | | | | - | apim:threat_protection_policy_manage | ✓ | | ✓ | | | | | | - | apim:document_manage | ✓ | ✓ | ✓ | | | | | | - | apim:client_certificates_add | ✓ | | ✓ | | | | | | - | apim:publisher_settings | ✓ | ✓ | ✓ | | | | | | - | apim:store_settings | ✓ | | | ✓ | | | | | - | apim:client_certificates_view | ✓ | | ✓ | | | | | | - | apim:mediation_policy_manage | ✓ | | ✓ | | | | | | - | apim:threat_protection_policy_create | ✓ | | ✓ | | | | | | - | apim:ep_certificates_add | ✓ | | ✓ | | | | | | - | apim:ep_certificates_view | ✓ | | ✓ | | | | | | - | apim:api_key | ✓ | | ✓ | | | | | | - | apim_analytics:admin | ✓ | | | | | | | | - | apim_analytics:product_manager | ✓ | ✓ | ✓ | ✓ | | | | | - | apim_analytics:api_developer | ✓ | ✓ | ✓ | | | | | | - | apim_analytics:app_developer | ✓ | | | ✓ | | | | | - | apim_analytics:devops_engineer | ✓ | ✓ | ✓ | ✓ | | | | | - | apim_analytics:analytics_viewer | ✓ | | | | ✓ | | | | - | apim_analytics:everyone | | | | | | ✓ | | | - | apim:pub_alert_manage | ✓ | | ✓ | | | | | | - | apim:sub_alert_manage | ✓ | | | ✓ | | | | | - | apim:tenantInfo | ✓ | | | | | | | | - | apim:admin_operations | ✓ | | | | | | | | - | apim:api_list_view | ✓ | | | | | | | ✓ | - | apim:api_definition_view | ✓ | | | | | | | ✓ | - + The following are the scopes allowed for each default Internal role under the default configurations. + + | **Role** | **admin** | **Internal/publisher** | **Internal/creator** | **Internal/subscriber** | **Internal/analytics** | **Internal/everyone** | **Internal/devops** | **Internal/integration_dev** | + | ----------------------------------------- | --------- | ---------------------- | --------------------- | ----------------------- | ---------------------- | --------------------- | -------------------- | ----------------------------- | + | apim:api_publish | ✓ | ✓ | | | | | | | + | apim:api_create | ✓ | | ✓ | | | | | | + | apim:api_generate_key | ✓ | ✓ | ✓ | | | | | | + | apim:api_view | ✓ | ✓ | ✓ | | ✓ | | | | + | apim:api_delete | ✓ | | ✓ | | | | | | + | apim:api_manage | ✓ | | | | | | | | + | apim:subscribe | ✓ | | | ✓ | | | ✓ | | + | apim:tier_view | ✓ | ✓ | ✓ | | | | | | + | apim:tier_manage | ✓ | | | | | | | | + | apim:bl_view | ✓ | | | | | | | | + | apim:subscription_view | ✓ | ✓ | ✓ | | | | | | + | apim:subscription_block | ✓ | ✓ | | | | | | | + | apim:subscription_manage | ✓ | ✓ | | | | | | | + | apim:mediation_policy_view | ✓ | | ✓ | | | | | | + | apim:mediation_policy_create | ✓ | | ✓ | | | | | | + | apim:api_mediation_policy_manage | ✓ | | ✓ | | | | | | + | apim:api_workflow | ✓ | | | | | | | | + | apim:api_workflow_view | ✓ | | | | | | | | + | apim:api_workflow_approve | ✓ | | | | | | | | + | apim:admin | ✓ | | | | | | | | + | apim:app_owner_change | ✓ | | | | | | | | + | apim:app_import_export | ✓ | | | | | | ✓ | | + | apim:api_import_export | ✓ | | | | | | ✓ | | + | apim:api_product_import_export | ✓ | | | | | | ✓ | | + | apim:label_manage | ✓ | | | | | | | | + | apim:label_read | ✓ | | | | | | | | + | apim:app_update | ✓ | | | ✓ | | | | | + | apim:app_manage | ✓ | | | ✓ | | | ✓ | | + | apim:sub_manage | ✓ | | | ✓ | | | ✓ | | + | apim:monetization_usage_publish | ✓ | ✓ | | | | | | | + | apim:document_create | ✓ | ✓ | ✓ | | | | | | + | apim:ep_certificates_update | ✓ | | ✓ | | | | | | + | apim:client_certificates_update | ✓ | | ✓ | | | | | | + | apim:client_certificates_manage | ✓ | | ✓ | | | | | | + | apim:threat_protection_policy_manage | ✓ | | ✓ | | | | | | + | apim:document_manage | ✓ | ✓ | ✓ | | | | | | + | apim:client_certificates_add | ✓ | | ✓ | | | | | | + | apim:publisher_settings | ✓ | ✓ | ✓ | | | | | | + | apim:store_settings | ✓ | | | ✓ | | | | | + | apim:admin_settings | ✓ | | | | | | | | + | apim:client_certificates_view | ✓ | | ✓ | | | | | | + | apim:mediation_policy_manage | ✓ | | ✓ | | | | | | + | apim:threat_protection_policy_create | ✓ | | ✓ | | | | | | + | apim:ep_certificates_add | ✓ | | ✓ | | | | | | + | apim:ep_certificates_view | ✓ | | ✓ | | | | | | + | apim:ep_certificates_manage | ✓ | | ✓ | | | | | | + | apim:api_key | ✓ | | | ✓ | | | | | + | apim_analytics:admin | ✓ | | | | | | | | + | apim_analytics:monitoring_dashboard:own | ✓ | | | | | | | | + | apim_analytics:monitoring_dashboard:edit | ✓ | | | | | | | | + | apim_analytics:monitoring_dashboard:view | ✓ | | | | ✓ | | | | + | apim_analytics:business_analytics:own | ✓ | | | | | | | | + | apim_analytics:business_analytics:edit | ✓ | | | | | | | | + | apim_analytics:business_analytics:view | ✓ | | | | ✓ | | | | + | apim_analytics:api_analytics:own | ✓ | | | | | | | | + | apim_analytics:api_analytics:edit | ✓ | | | | | | | | + | apim_analytics:api_analytics:view | ✓ | ✓ | ✓ | | | | | | + | apim_analytics:application_analytics:own | ✓ | | | | | | | | + | apim_analytics:application_analytics:edit | ✓ | | | | | | | | + | apim_analytics:application_analytics:view | ✓ | | | ✓ | | | | | + | apim:pub_alert_manage | ✓ | | ✓ | | | | | | + | apim:sub_alert_manage | ✓ | | | ✓ | | | | | + | apim:tenantInfo | ✓ | | | | | | | | + | apim:tenant_theme_manage | ✓ | | | | | | | | + | apim:admin_operations | ✓ | | | | | | | | + | apim:shared_scope_manage | ✓ | | | | | | | | + | apim:admin_alert_manage | ✓ | | | | | | | | + | apim:bot_data | ✓ | | | | | | | | + | apim:scope_manage | ✓ | | | | | | | | + | apim:role_manage | ✓ | | | | | | | | + | apim:environment_manage | ✓ | | | | | | | | + | apim:environment_read | ✓ | | | | | | | | + | service_catalog:service_view | ✓ | ✓ | ✓ | | | | | | + | service_catalog:service_write | ✓ | | ✓ | | | | | | + | apim:comment_view | ✓ | ✓ | ✓ | | | | | | + | apim:comment_write | ✓ | ✓ | ✓ | | | | | | + | apim:comment_manage | ✓ | ✓ | ✓ | | | | | | + | apim:throttling_policy_manage | ✓ | ✓ | ✓ | | ✓ | | | + | apim:admin_application_view | ✓ | | | | | | | | + | apim:api_list_view | | | | | | | | ✓ | + | apim:api_definition_view | | | | | | | | ✓ | + | apim:common_operation_policy_view | ✓ | ✓ | ✓ | | | | | | + | apim:common_operation_policy_manage | ✓ | | ✓ | | | | | | + | apim:policies_import_export | ✓ | | | | | | ✓ | | From dea880c14c79a8abbea64deaa355ff116056f1fa Mon Sep 17 00:00:00 2001 From: msm1992 Date: Wed, 30 Oct 2024 09:49:09 +0530 Subject: [PATCH 2/2] Remove extra spaces --- .../administer/managing-users-and-roles/managing-permissions.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/en/docs/administer/managing-users-and-roles/managing-permissions.md b/en/docs/administer/managing-users-and-roles/managing-permissions.md index b52c371881..07b7fad270 100644 --- a/en/docs/administer/managing-users-and-roles/managing-permissions.md +++ b/en/docs/administer/managing-users-and-roles/managing-permissions.md @@ -189,7 +189,7 @@ Additionally, all permissions listed under Admin/Monitor in the ![Add Custom Scope Mapping]({{base_path}}/assets/img/administer/new-custom-scope-mapping.png) !!! info - The following are the scopes allowed for each default Internal role under the default configurations. + The following are the scopes allowed for each default Internal role under the default configurations. | **Role** | **admin** | **Internal/publisher** | **Internal/creator** | **Internal/subscriber** | **Internal/analytics** | **Internal/everyone** | **Internal/devops** | **Internal/integration_dev** | | ----------------------------------------- | --------- | ---------------------- | --------------------- | ----------------------- | ---------------------- | --------------------- | -------------------- | ----------------------------- |