mirror of
https://github.com/netdata/netdata.git
synced 2025-04-25 13:33:48 +00:00
RBAC for dynamic configuration documentation (#17861)
Co-authored-by: Ilya Mashchenko <ilya@netdata.cloud>
This commit is contained in:
Fotis Voutsas
GitHub
parent
87682c5e8f
commit
57cff4c8ec
2 changed files with 44 additions and 26 deletions
docs
netdata-agent/configuration
netdata-cloud/authentication-and-authorization
|
|
@ -9,7 +9,9 @@ The Dynamic Configuration Manager allows direct configuration of collectors and
|
|||
|
||||
**Cloud Connection and Security**: Nodes using Dynamic Configuration Manager require a connection to Netdata Cloud. This ensures proper permission handling and data security.
|
||||
|
||||
**Permissions**: Admins and Managers can view, edit, and submit configurations within the UI.
|
||||
> **Info**
|
||||
>
|
||||
> To understand what actions users can perform based on their role, refer to the [Role Based Access documentation](/docs/netdata-cloud/authentication-and-authorization/role-based-access-model.md#dynamic-configuration-manager).
|
||||
|
||||
## Collectors
|
||||
|
||||
|
|
|
|||
|
|
@ -8,7 +8,7 @@ With the advent of the paid plans we revamped the roles to cover needs expressed
|
|||
being able to join any Room. We also aligned the offered roles to the target audience of each plan. The end result is the following:
|
||||
|
||||
| **Role** | **Community** | **Homelab** | **Business** | **Enterprise On-Premise** |
|
||||
|:--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:-------------------|:-------------------|:-------------------|:--------------------------|
|
||||
|:------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:-------------------|:-------------------|:-------------------|:--------------------------|
|
||||
| **Admins**<p>Users with this role can control Spaces, Rooms, Nodes, Users and Billing.</p><p>They can also access any Room in the Space.</p> | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
|
||||
| **Managers**<p>Users with this role can manage Rooms and Users.</p><p>They can access any Room in the Space.</p> | - | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
|
||||
| **Troubleshooters**<p>Users with this role can use Netdata to troubleshoot, not manage entities.</p><p>They can access any Room in the Space.</p> | - | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
|
||||
|
|
@ -75,11 +75,11 @@ In more detail, you can find on the following tables which functionalities are a
|
|||
### Notifications Management
|
||||
|
||||
| **Functionality** | **Admin** | **Manager** | **Troubleshooter** | **Observer** | **Billing** | **Member** | Notes |
|
||||
|:--------------------------------------------------------------------------|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|:------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|
||||
|:--------------------------------------------------------------------------|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|
||||
| See all configured notifications on a Space | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | - | :heavy_check_mark: | |
|
||||
| Add new configuration | :heavy_check_mark: | - | - | - | - | - | |
|
||||
| Enable/Disable configuration | :heavy_check_mark: | - | - | - | - | - | |
|
||||
| Edit configuration | :heavy_check_mark: | - | - | - | - | - | Some exceptions apply depending on [service level](/docs/alerts-and-notifications/notifications/centralized-cloud-notifications/manage-notification-methods.md#available-actions-per-notification-methods-based-on-service-level) |
|
||||
| Edit configuration | :heavy_check_mark: | - | - | - | - | - | Some exceptions apply depending on [service level](/docs/alerts-and-notifications/notifications/centralized-cloud-notifications/manage-notification-methods.md#available-actions-per-notification-method-based-on-service-level) |
|
||||
| Delete configuration | :heavy_check_mark: | - | - | - | - | - | |
|
||||
| Edit personal level notification settings | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | [Manage user notification settings](/docs/alerts-and-notifications/notifications/centralized-cloud-notifications/manage-notification-methods.md#manage-user-notification-settings) |
|
||||
| See space alert notification silencing rules | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | - | - | - | |
|
||||
|
|
@ -107,7 +107,7 @@ In more detail, you can find on the following tables which functionalities are a
|
|||
### Functions
|
||||
|
||||
| **Functionality** | **Admin** | **Manager** | **Troubleshooter** | **Observer** | **Billing** | **Member** | Notes |
|
||||
| :-- | :--: | :--: | :--: | :--: | :--: | :--: | :-- |
|
||||
|:-------------------------------|:------------------:|:------------------:|:------------------:|:------------------:|:-----------:|:------------------:|:---------------------------------------------------------------------|
|
||||
| See all functions in Room | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | - | :heavy_check_mark: |
|
||||
| Run any function in Room | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| Run read-only function in Room | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | - | :heavy_check_mark: | |
|
||||
|
|
@ -130,6 +130,22 @@ In more detail, you can find on the following tables which functionalities are a
|
|||
| Manage payment methods | :heavy_check_mark: | - | - | - | :heavy_check_mark: | - | |
|
||||
| Update billing email | :heavy_check_mark: | - | - | - | :heavy_check_mark: | - | |
|
||||
|
||||
### Dynamic Configuration Manager
|
||||
|
||||
Netdata Cloud paid subscription required for all action except "List All".
|
||||
|
||||
| **Functionality** | **Admin** | **Manager** | **Troubleshooter** | **Observer** | **Billing** | **Member** |
|
||||
|:--------------------------------------|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|:------------------:|
|
||||
| List All (see all configurable items) | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
|
||||
| Enable/Disable | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| Add | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| Update | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| Remove | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| Test | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| View | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
| View File Format | :heavy_check_mark: | :heavy_check_mark: | - | - | - | - |
|
||||
|
||||
|
||||
### Other permissions
|
||||
|
||||
| **Functionality** | **Admin** | **Manager** | **Troubleshooter** | **Observer** | **Billing** | **Member** |
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue