User Roles and Permissions
- Former user (Deleted)
The following matrix illustrates the roles and actions that the users can carry out on Private PaaS:
A user is a person who interacts with the Private PaaS system. There can be many types of users in Private PaaS based on the different permission levels defined through the system such as, super tenant administrator, super tenant user, tenant administrators and tenant users. A tenant user can interact with Private PaaS at many levels, and may take the role of a DevOps, PaaS application developer or a SaaS application developer.Â
For the purpose of providing greater flexibility, Private PaaS provides a simplified user permission model that includes Tenant administrator and Tenant user permissions. The permission levels are defined as follows:
- Tenant Admin:Â Manage users and all Private PaaS features.
- Tenant User:Â Manage all Private PaaS features.
The following table indicates the actions that are recommended to be carried out by the respective user. These actions can be customized to suite the user role in a given scenario by defining the permission levels accordingly.
Entity/Process | Action   | User Roles | |||
|---|---|---|---|---|---|
Super | Super Tenant User | Tenant Admin | Tenant User | ||
| Cartridges | Adding a cartridge. | Yes | Yes | Yes | Yes |
| Updating a cartridge. | Yes | Yes | Yes | Yes | |
| Getting details of a specific cartridge. | Yes | Yes | Yes | Yes | |
| Getting details of cartridges. | Yes | Yes | Yes | Yes | |
| Getting details of cartridges using filters. | Yes | Yes | Yes | Yes | |
| Synchronizing the GIT Repo of a cartridge | Yes | Yes | Yes | Yes | |
| Deleting a cartridge. | Yes | Yes | Yes | Yes | |
| Cartridge groups | Adding a cartridge group. | Yes | Yes | Yes | Yes |
| Updating a cartridge group. | Yes | Yes | Yes | Yes | |
| Getting details of a specific cartridge group. | Yes | Yes | Yes | Yes | |
| Getting details of cartridge groups. | Yes | Yes | Yes | Yes | |
| Deleting a cartridge group. | Yes | Yes | Yes | Yes | |
| Network partitions | Adding a network partition. | Yes | Yes | Yes | Yes |
| Updating a network partition. | Yes | Yes | Yes | Yes | |
| Getting details of a specific network partition. | Yes | Yes | Yes | Yes | |
| Getting details of network partitions. | Yes | Yes | Yes | Yes | |
| Deleting a network partition. | Yes | Yes | Yes | Yes | |
| Applications | Adding an application. | Yes | Yes | Yes | Yes |
| Deploy an application. | Yes | Yes | Yes | Yes | |
| Getting details of an application. | Yes | Yes | Yes | Yes | |
| Getting details of applications. | Yes | Yes | Yes | Yes | |
| Getting the runtime topology of an application. | Yes | Yes | Yes | Yes | |
| Undeploy an application. | Yes | Yes | Yes | Yes | |
| Deleting an application. | Yes | Yes | Yes | Yes | |
| Application policy | Adding an application policy. | Yes | Yes | Yes | Yes |
| Updating an application policy. | Yes | Yes | Yes | Yes | |
| Getting details of an application policy. | Yes | Yes | Yes | Yes | |
| Getting details of application policies. | Yes | Yes | Yes | Yes | |
| Deleting an application policy. | Yes | Yes | Yes | Yes | |
| Application sign up | Signing up to an application. | Yes | Yes | Yes | Yes |
| Getting sign up details of an application. | Yes | Yes | Yes | Yes | |
| Deleting Sign Up Details of an Application. | Yes | Yes | Yes | Yes | |
| Domain mappings | Adding domain mappings. | Yes | Yes | Yes | Yes |
| Getting domain mapping details of an application. | Yes | Yes | Yes | Yes | |
| Deleting domain mappings. | Yes | Yes | Yes | Yes | |
| Auto-scaling policies | Adding an auto-scaling policy. | Yes | Yes | Yes | Yes |
| Updating an auto-scaling policy. | Yes | Yes | Yes | Yes | |
| Getting details of an auto-scaling policy. | Yes | Yes | Yes | Yes | |
| Getting details of auto-scaling policies. | Yes | Yes | Yes | Yes | |
| Deleting an auto-scaling policy. | Yes | Yes | Yes | Yes | |
| Tenants | Adding a tenant. | Yes | No | No | No |
| Updating a tenant. | Yes | No | No | No | |
| Getting details of a tenant. | Yes | No | No | No | |
| Getting details of tenants. | Yes | No | No | No | |
| Searching for tenants. | Yes | No | No | No | |
| Activating a tenant. | Yes | No | No | No | |
| Deactivating a tenant. | Yes | No | No | No | |
| Users | Adding a user. | Yes | No | Yes | No |
| Updating a user. | Yes | No | Yes | No | |
| Getting details of users. | Yes | No | Yes | No | |
| Deleting a user. | Yes | No | Yes | No | |
| Kubernetes-CoreOS Clusters | Adding a Kubernetes-CoreOS Cluster. | Yes | Yes | Yes | Yes |
| Adding a host to a Kubernetes-CoreOS Cluster. | Yes | Yes | Yes | Yes | |
| Updating a Kubernetes-CoreOS master. | Yes | Yes | Yes | Yes | |
| Getting details on all Kubernetes-CoreOS groups. | Yes | Yes | Yes | Yes | |
| Getting details on a Kubernetes-CoreOS group. | Yes | Yes | Yes | Yes | |
| Getting details on all the hosts in a Kubernetes-CoreOS group. | Yes | Yes | Yes | Yes | |
| Getting details on the master in a Kubernetes-CoreOS group. | Yes | Yes | Yes | Yes | |
| Undeploying a host in a Kubernetes-CoreOS group. | Yes | Yes | Yes | Yes | |
| Deleting a Kubernetes-CoreOS group. | Yes | Yes | Yes | Yes | |
| Deployment policies | Adding a deployment policy. | Yes | Yes | Yes | Yes |
| Updating a deployment policy. | Yes | Yes | Yes | Yes | |
| Getting details of a deployment policy. | Yes | Yes | Yes | Yes | |
| Getting details of deployment policies. | Yes | Yes | Yes | Yes | |
| Deleting a deployment policy. | Yes | Yes | Yes | Yes | |
| Other | Changing the default super admin password. | Yes | No | No | No |
| Monitoring via the dashboard. | Yes | Yes | No | No | |
| Handle billing activities. | Yes | Yes | No | No | |