From 1dfb2d1463aebd63d1ba78af3b4f52c3813a6840 Mon Sep 17 00:00:00 2001 From: Wolfgang Amann Date: Tue, 3 Sep 2024 11:08:48 +0200 Subject: [PATCH] review feedback --- .../modeler/web-modeler/collaboration.md | 2 +- .../user-guide/roles/add-assign-permission.md | 20 +++++++++---------- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/docs/components/modeler/web-modeler/collaboration.md b/docs/components/modeler/web-modeler/collaboration.md index 75a23125c4e..0432c19f226 100644 --- a/docs/components/modeler/web-modeler/collaboration.md +++ b/docs/components/modeler/web-modeler/collaboration.md @@ -69,7 +69,7 @@ If the role is not pre-existing, it can be created with the following permission - Web Modeler Internal API - `admin:*` - Camunda Identity Resource Server - `read:users` -See [here](../../../self-managed/identity/user-guide/roles/add-assign-role.md) how to add a new role and [here](../../../self-managed/identity/user-guide/roles/add-assign-permission.md) how to add the new `admin:*` permission to the Web Modeler Internal API. +Refer to the documentation pages about [assigning roles](../../../self-managed/identity/user-guide/roles/add-assign-role.md) and [adding permissions](../../../self-managed/identity/user-guide/roles/add-assign-permission.md) for detailed instructions. diff --git a/docs/self-managed/identity/user-guide/roles/add-assign-permission.md b/docs/self-managed/identity/user-guide/roles/add-assign-permission.md index ad378dd8ccb..bd4469cf51a 100644 --- a/docs/self-managed/identity/user-guide/roles/add-assign-permission.md +++ b/docs/self-managed/identity/user-guide/roles/add-assign-permission.md @@ -16,16 +16,16 @@ You can create permissions for granular access control over your APIs. Permissio The preset permissions for Camunda components are: -| Component | Permissions | Descriptions | -| ----------- | ------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -| Connectors | `read:*` | Read access to all APIs | -| Console | `write:*` | Write access to all pages | -| Identity | `read`
`read:users`
`write` | Read access to all pages
Access only the **Users** page and related subpages
Write access to all pages | -| Operate | `read:*`
`write:*` | Read access to all APIs
Write access to all APIs | -| Optimize | `write:*` | Write access to all APIs | -| Tasklist | `read:*`
`write:*` | Read access to all APIs
Write access to all APIs | -| Web Modeler | `write:*`
`admin:*`
`create:*`
`read:*`
`update:*`
`delete:*` | Access to the Internal API
Elevated Access to the Internal API (See [Super-User Mode](../../../../components/modeler/web-modeler/collaboration.md#super-user-mode) and [Publishing Connector Templates](../../../../components/connectors/manage-connector-templates.md#publish-a-connector-template))
CRUD access to Public API | -| Zeebe | `write:*` | Write access to all APIs | +| Component | Permissions | Descriptions | +| ----------- | ----------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | +| Connectors | `read:*` | Read access to all APIs | +| Console | `write:*` | Write access to all pages | +| Identity | `read`
`read:users`
`write` | Read access to all pages
Access only the **Users** page and related subpages
Write access to all pages | +| Operate | `read:*`
`write:*` | Read access to all APIs
Write access to all APIs | +| Optimize | `write:*` | Write access to all APIs | +| Tasklist | `read:*`
`write:*` | Read access to all APIs
Write access to all APIs | +| Web Modeler | `write:*`

`admin:*`

`create:*`
`read:*`
`update:*`
`delete:*` | Access to internal API

Elevated Access to the Internal API (see [super-user mode](../../../../components/modeler/web-modeler/collaboration.md#super-user-mode) and [publishing Connector templates](../../../../components/connectors/manage-connector-templates.md#publish-a-connector-template))

CRUD access to public API | +| Zeebe | `write:*` | Write access to all APIs | In this guide, we will show you how to use Identity to add and assign a permission to a role.