Roles

User roles must be granted with permissions in order to access and do operations on every Governance Registry feature. Following are the combinations of permissions required to access Governance Registry features and do relevant operations. Permissions can be granted to a user role while its being created.

Extensions

Add
1. All Permission>Admin Permissions>Manage>Extensions>List
List
1. All Permission>Admin Permissions>Manage>Extensions>Add
Life Cycles
1. All Permission>Admin Permissions>Configure>Governance>Lifecycles
Handler
1. All Permission>Admin Permissions>Configure>Repository>Handlers
2. All Permission>Admin Permissions>Manage>Resources>Browse
Artifact Types
1. All Permission>Admin Permissions>Configure>Governance>Manage RXT
2. All Permission>Admin Permissions>Manage>Resources>Browse
3. All Permission>Admin Permissions>Manage>Resources>Govern>Generic Artifacts>Add
4. All Permission>Admin Permissions>Manage>Resources>Search>Advanced

Main>Resources

Browse
1. All Permission>Admin Permissions>Manage>Resources>Browse

You might need provide additional permissions to the logged in User Role in order to perform WRITE and DELETE operations on resources and collections. See Managing Role Permissions.

Activity search
1. All Permission>Admin Permissions>Manage>Search>Activities
Search
1. All Permission>Admin Permissions>Manage>Search>Advanced
Reports
1. All Permission>Admin Permissions>Manage>Resources>WS-API
2. All Permission>Admin Permissions>Manage>Resources>Browse

Main>Metadata

In order to Add any artifact the following permissions must be given:

1. All Permission>Admin Permissions>Manage>Resources>Govern>Metadatta
2. All Permission>Admin Permissions>Manage>Resources>Govern>Generic Artifacts>Add
3. All Permission>Admin Permissions>Manage>Resources>WS-API
4. All Permission>Admin Permissions>Manage>Resources>Browse

In addition, the following specific permissions must be given for each artifact:

Add API
1. All Permission>Admin Permissions>Manage>Resources>Govern>APIs>Add
Add Document
1. All Permission>Admin Permissions>Manage>Resources>Govern>Documents>Add
Add Endpoint
1. All Permission>Admin Permissions>Manage>Resources>Govern>Endpoints>Add
Add Policy
1. All Permission>Admin Permissions>Manage>Resources>Govern>Policies>Add
Add Provider
1. All Permission>Admin Permissions>Manage>Resources>Govern>Providers>Add
Add Proxy
1. All Permission>Admin Permissions>Manage>Resources>Govern>Proxies>Add
Add Schema
1. All Permission>Admin Permissions>Manage>Resources>Govern>Schemas>Add
Add Service
1. All Permission>Admin Permissions>Manage>Resources>Govern>Services>Add
Add URI
1. All Permission>Admin Permissions>Manage>Resources>Govern>URIs>Add
Add WADL
1. All Permission>Admin Permissions>Manage>Resources>Govern>WADLs>Add
Add WSDL
1. All Permission>Admin Permissions>Manage>Resources>Govern>WSDLs>Add

In order to List any artifact, the following permissions must be given

1. All Permission>Admin Permissions>Manage>Resources>Govern>Metadata
2. All Permission>Admin Permissions>Manage>Resources>Govern>Generic Artifacts>List
3. All Permission>Admin Permissions>Manage>Resources>WS-API

In addition, the following specific permissions must be given for each artifact:

List API
1. All Permission>Admin Permissions>Manage>Resources>Govern>APIs>List
List Document
1. All Permission>Admin Permissions>Manage>Resources>Govern>Documents>List
List Endpoint
1. All Permission>Admin Permissions>Manage>Resources>Govern>Endpoints>List
List Policy
1. All Permission>Admin Permissions>Manage>Resources>Govern>Policies>List
List Provider
1. All Permission>Admin Permissions>Manage>Resources>Govern>Providers>List
List Proxy
1. All Permission>Admin Permissions>Manage>Resources>Govern>Proxies>List
List Schema
1. All Permission>Admin Permissions>Manage>Resources>Govern>Schemas>List
List Service
1. All Permission>Admin Permissions>Manage>Resources>Govern>Services>List
List URI
1. All Permission>Admin Permissions>Manage>Resources>Govern>URIs>List
List WADL
1. All Permission>Admin Permissions>Manage>Resources>Govern>WADLs>List
List WSDL
1. All Permission>Admin Permissions>Manage>Resources>Govern>WSDLs>List

You might want to have a look at the default permission mappings in repository/conf/permission-mappings.xml if you are interested in more granular resource access permissions. See Configuring Registry Files.

Main>Configure

Notifications
1. All Permission>Admin Permissions>Manage>Resources>Browse
2. All Permission>Admin Permissions>Manage>Resources>Notifications
3. All Permission>Admin Permissions>Manage>Resources>Community Features

Associations and Dependencies

Add Association and Add Dependencies
1. All Permission>Admin Permissions>Manage>Resources>Associations.
2. And the particular resource should have WRITE permission provided for the logged in User role.

Life Cycles

Life Cycles
1. All Permission>Admin Permissions>Manage>Resources>Community Features
2. All Permission>Admin Permissions>Manage>Resources>Govern>Lifecycles
3. All Permission>Admin Permissions>Manage>Resources>Browse
In order to perform a life cycle operation (Promoted/Demote) on a resource the user should have READ/WRITE permissions to the target environment.

Community Features

Add Tags, Add Comments, Add Subscriptions, Add Ratings
1. All Permission>Admin Permissions>Manage>Resources>Community Features