Workbench Permissions¶
Workbench defines three user roles:
- Workspace Admin
- Workspace Editor
- Workspace Viewer
Each role has different permissions, as described below.
Object | Operation | Workspace Admin | Workspace Editor | Workspace Viewer |
---|---|---|---|---|
Application | view application list | ✅ | ✅ | ✅ |
view details (Go to Container Management) | ✅ | ✅ | ✅ | |
view application logs (Go to Observability) | ✅ | ✅ | ✅ | |
view monitoring data (Go to Observability) | ✅ | ✅ | ✅ | |
view RabbitMQ details – Basic information | ✅ | ✅ | ✅ | |
view service mesh (Go to Service Mesh) | ✅ | ✅ | ✅ | |
view Microservice Engine (Go to Microservice Engine) | ✅ | ✅ | ✅ | |
create an application | ✅ | ✅ | ❌ | |
edit YAML | ✅ | ✅ | ❌ | |
update the number of replicas | ✅ | ✅ | ❌ | |
update container image | ✅ | ✅ | ❌ | |
edit pipeline | ✅ | ✅ | ❌ | |
group applications | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ❌ | |
Namespace | view | ✅ | ✅ | ✅ |
create | ✅ | ❌ | ❌ | |
edit tag | ✅ | ❌ | ❌ | |
edit resource quota | ✅ | ❌ | ❌ | |
delete | ✅ | ❌ | ❌ | |
Pipeline | view pipeline | ✅ | ✅ | ✅ |
view running records | ✅ | ✅ | ✅ | |
create | ✅ | ✅ | ❌ | |
run | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ❌ | |
copy | ✅ | ✅ | ❌ | |
edit | ✅ | ✅ | ❌ | |
cancel pipeline running | ✅ | ✅ | ❌ | |
Credential | view | ✅ | ✅ | ✅ |
create | ✅ | ✅ | ❌ | |
edit | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ❌ | |
GitOps | view | ✅ | ✅ | ✅ |
create | ✅ | ✅ | ❌ | |
sync | ✅ | ✅ | ❌ | |
edit | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ✅ | |
Code Repo | view | ✅ | ✅ | ❌ |
import | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ❌ | |
Canary Release | view | ✅ | ✅ | ✅ |
create | ✅ | ✅ | ❌ | |
release | ✅ | ✅ | ❌ | |
continue to release | ✅ | ✅ | ❌ | |
stop release | ✅ | ✅ | ❌ | |
update | ✅ | ✅ | ❌ | |
rollback | ✅ | ✅ | ❌ | |
delete | ✅ | ✅ | ❌ |
Note
For a more detailed introduction to roles and permissions of DCE 5.0, refer to Role and permission management.