Versions Compared

Old Version 6

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents

...

staticPath = Utils.governanceRooted(staticPath);

For example, gadgets is the static prefix in the following storage path.

Note

If you create any custom roles that mimic the internal/publisher role, which is shipped with ES, it is mandatory for you need to add the read/write access to the static part of the storage path of the respective asset types, which is defined in the RXTs.

Code Block
Code Block
/gadgets/@{overview_provider}/@{overview_name}/@{overview_version}

For more information, see Assigning Permissions to the Static Storage Path of an Asset Type.

Info

The Add, Modify, and Remove role options are only visible to administrators with privileges.

...

  1. Sign into the WSO2 ES Management Console.
  2. On the Main menu, navigate to Users and Roles, and click Add
  3. Click Add New Role
  4. Select the domain. By default, PRIMARY appears to indicate the primary user store; however, if secondary user stores have been added they are listed in the Domain drop-down list.
  5. Enter the name for the role.
  6. Click Next and proceed to the next step. You can also click Finish, in which case, the new roles will be created with default permissions (none) and no assigned users.
  7. Select permissions for the new role. 
    The following are the basic permissions that are required.
    • If you want the user to be able to login to the Store, add the following permission.
      Image Added 
    • If you want the user to be able to login to the Publisher, add the following permission.
      Image Added 
    • If you want the user the user to be able to view a specific asset type in the Publisher and Store, enable the Add and List permission of that respective asset type.
      For example, if you want the user to be able to view gadgets in the Publisher and Store, add the following permissions.
      Image Added 
  8. Click Next.
  9. Enter a username pattern. Use one of the following approaches: 
    • Enter the exact username.
    • Enter part of the username followed by or preceded by an asterisk (*) (for example, ad* - this option will return all the users that have usernames starting with "ad").
    • Enter only an asterisk (*). This option will return all the users under the selected domain.
  10. Select the users that will be assigned to the role. 
  11. Click Finish.
    The new role is added to the list on the Roles page.
Info

When adding roles to external user stores

  • Some external user stores do not allow you to create empty roles. In that case, selecting users who belong to a role is mandatory.
  • If you connect to an external user store (e.g., LDAP) in the read-only mode, you can read existing roles from it, but you can not edit/delete the roles. In this case, you can still create new roles that are editable and can be managed internally.
  • If you connect to an external user store in read/write mode, you can edit the roles in the external user store as well.

...