Skip to content

Commit

Permalink
review feedback
Browse files Browse the repository at this point in the history
  • Loading branch information
wollefitz committed Sep 3, 2024
1 parent df18472 commit 567f1c6
Show file tree
Hide file tree
Showing 3 changed files with 21 additions and 21 deletions.
2 changes: 1 addition & 1 deletion docs/components/modeler/web-modeler/collaboration.md
Original file line number Diff line number Diff line change
Expand Up @@ -69,7 +69,7 @@ If the role is not pre-existing, it can be created with the following permission
- Web Modeler Internal API - `admin:*`
- Camunda Identity Resource Server - `read:users`

See [here](../../../self-managed/identity/user-guide/roles/add-assign-role.md) how to add a new role and [here](../../../self-managed/identity/user-guide/roles/add-assign-permission.md) how to add the new `admin:*` permission to the Web Modeler Internal API.
Refer to the documentation pages about [assigning roles](../../../self-managed/identity/user-guide/roles/add-assign-role.md) and [adding permissions](../../../self-managed/identity/user-guide/roles/add-assign-permission.md) for detailed instructions.
</TabItem>

</Tabs>
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -16,16 +16,16 @@ You can create permissions for granular access control over your APIs. Permissio

The preset permissions for Camunda components are:

| Component | Permissions | Descriptions |
| ----------- | ------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Connectors | `read:*` | Read access to all APIs |
| Console | `write:*` | Write access to all pages |
| Identity | `read` <br/> `read:users` <br/> `write` | Read access to all pages <br/> Access only the **Users** page and related subpages <br/> Write access to all pages |
| Operate | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Optimize | `write:*` | Write access to all APIs |
| Tasklist | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Web Modeler | `write:*` <br/> `admin:*` <br/> `create:*` <br/> `read:*` <br/> `update:*` <br/> `delete:*` | Access to the Internal API <br/> Elevated Access to the Internal API (See [Super-User Mode](../../../../components/modeler/web-modeler/collaboration.md#super-user-mode) and [Publishing Connector Templates](../../../../components/connectors/manage-connector-templates.md#publish-a-connector-template)) <br/> CRUD access to Public API |
| Zeebe | `write:*` | Write access to all APIs |
| Component | Permissions | Descriptions |
| ----------- | ----------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Connectors | `read:*` | Read access to all APIs |
| Console | `write:*` | Write access to all pages |
| Identity | `read` <br/> `read:users` <br/> `write` | Read access to all pages <br/> Access only the **Users** page and related subpages <br/> Write access to all pages |
| Operate | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Optimize | `write:*` | Write access to all APIs |
| Tasklist | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Web Modeler | `write:*` <br/><br/> `admin:*` <br/><br/> `create:*` <br/> `read:*` <br/> `update:*` <br/> `delete:*` | Access to internal API <br/><br/> Elevated Access to the Internal API (see [super-user mode](../../../../components/modeler/web-modeler/collaboration.md#super-user-mode) and [publishing Connector templates](../../../../components/connectors/manage-connector-templates.md#publish-a-connector-template)) <br/><br/> CRUD access to public API |
| Zeebe | `write:*` | Write access to all APIs |

In this guide, we will show you how to use Identity to add and assign a permission to a role.

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -16,16 +16,16 @@ You can create permissions for granular access control over your APIs. Permissio

The preset permissions for Camunda components are:

| Component | Permissions | Descriptions |
| ----------- | ----------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------ |
| Connectors | `read:*` | Read access to all APIs |
| Console | `write:*` | Write access to all pages |
| Identity | `read` <br/> `read:users` <br/> `write` | Read access to all pages <br/> Access only the **Users** page and related subpages <br/> Write access to all pages |
| Operate | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Optimize | `write:*` | Write access to all APIs |
| Tasklist | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Web Modeler | `create:*` <br/> `read:*` <br/> `update:*` <br/> `delete:*` | CRUD access |
| Zeebe | `write:*` | Write access to all APIs |
| Component | Permissions | Descriptions |
| ----------- | --------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------ |
| Connectors | `read:*` | Read access to all APIs |
| Console | `write:*` | Write access to all pages |
| Identity | `read` <br/> `read:users` <br/> `write` | Read access to all pages <br/> Access only the **Users** page and related subpages <br/> Write access to all pages |
| Operate | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Optimize | `write:*` | Write access to all APIs |
| Tasklist | `read:*` <br/> `write:*` | Read access to all APIs <br/> Write access to all APIs |
| Web Modeler | `write:*` <br/> `create:*` <br/> `read:*` <br/> `update:*` <br/> `delete:*` | Access to internal API <br/> CRUD access to public API |
| Zeebe | `write:*` | Write access to all APIs |

In this guide, we will show you how to use Identity to add and assign a permission to a role.

Expand Down

0 comments on commit 567f1c6

Please sign in to comment.