Skip to content

Commit 14f7251

Browse files
mpfustermpfuster
authored
Merge pull request #7030 from EnterpriseDB/c-upm-61578
chore(UPM-61578): Fixed HM role names
2 parents 78584c0 + b248703 commit 14f7251

File tree

3 files changed

+54
-51
lines changed
  • product_docs/docs/edb-postgres-ai
    • 1.2/hybrid-manager/using_hybrid_manager/managing_users/user_roles_authz
    • preview/hybrid-manager/using_hybrid_manager/managing_users/user_roles_authz

3 files changed

+54
-51
lines changed

product_docs/docs/edb-postgres-ai/1.2/hybrid-manager/using_hybrid_manager/managing_users/user_roles_authz/roles.mdx

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -38,12 +38,12 @@ These roles can be assigned to human or machine users (except for estate ingeste
3838

3939
### Project owner (owner)
4040

41-
In a specific project, the project owner has the highest level of authority.
41+
In a specific project, the project owner has the highest level of authority.
4242
They can take all actions in that project and are responsible for assigning project-level roles to other users.
4343

4444
### Project editor (editor)
4545

46-
This role is for users who need to actively work with the data in a project.
46+
This role is for users who need to actively work with the data in a project.
4747
Project editors have data read and write access.
4848

4949
### Project viewer (viewer)
@@ -52,7 +52,7 @@ For users who only need to observe the data in a project, the project viewer rol
5252

5353
### Estate ingester (estate ingester)
5454

55-
This role is for machine users and provides access to perform estate ingests in a project.
55+
This role is for machine-users and provides access to perform estate ingests in a project.
5656

5757
### Catalog data reader (catalog data reader)
5858

@@ -73,4 +73,4 @@ Users with this role can read and update Migration Portal projects in an HM proj
7373

7474
### Migration Portal projects viewer
7575

76-
This role provides read-only access to Migration Portal projects in an HM project.
76+
This role provides read-only access to Migration Portal projects in an HM project.

product_docs/docs/edb-postgres-ai/preview/hybrid-manager/using_hybrid_manager/managing_users/user_roles_authz/authz.mdx

Lines changed: 28 additions & 25 deletions
Original file line numberDiff line numberDiff line change
@@ -6,32 +6,35 @@ description: See what the predefined Hybrid Manager user roles are authorized to
66

77
Authorization of these user roles follows a role-based access control (RBAC) model with the restrictions applying to a specific scope—either within one project or within one account.
88

9-
The following list doesn't cover Postgres cluster database authorization.
9+
The following list doesn't cover Postgres cluster database authorization.
1010

1111
Currently, you can't create custom roles. Only these 11 predefined roles are available.
1212

13-
| Permissions | Org admin | Org owner | Platform admin | GenAI Builder user | Project owner | Project editor | Project viewer | Estate ingester | Catalog data reader | Catalog data writer |
14-
| -------- | -------- | -------- | -------- | -------- | -------- | -------- | -------- | -------- | -------- | -------- |
15-
| Access GenAI Builder (launchpad) | | | | X | | | | | | |
16-
| Configure GenAI Builder | | | X | | | | | | | |
17-
| Access Ops apps (launchpad) | | | X | | | | | | | |
18-
| View projects within the org | X | X | | | | | | | | |
19-
| Update and delete projects | | X | | | | | | | | |
20-
| View roles assigned at the project level | X | X | | | X | X | | | | |
21-
| View activity log for the org | X | X | | | | | | | | |
22-
| View and download usage report for the project | | X | | | X | X | | | | |
23-
| View and download usage report the the org | X | X | | | | | | | | |
24-
| Create projects within the org | | X | | | | | | | | |
25-
| Assign project roles | | X | | | X | | | | | |
26-
| Create, edit, and delete clusters | | | | | X | X | | | | |
27-
| View clusters, backups, estates, and migrations | | | | | X | X | X | | | |
28-
| Assign org roles | | X | | | | | | | | |
29-
| View activity log for the project| | X | | | X | X | | | | |
30-
| View, edit, and delete owned projects| | | | | X | | | | | |
31-
| Ingest self-managed Postgres cluster data | | | | | | | | X* | | |
32-
| Create, update, and delete catalog | | | | | X | X | | | | |
33-
| Read catalog | | | | | | | X | | | |
34-
| Read Iceberg data | | | | | | | | | X | X |
35-
| Write and delete Iceberg data| | | | | | | | | | X |
13+
| Permissions | Organization Administrator | Organization Owner | Platform Admin | Project Owner | Project Editor | Project Viewer | Estate Ingester | GenAI Builder Editor | Catalog Data reader | Catalog Data writer | Migration Portal Projects Owner | Migration Portal Projects Editor | Migration Portal Projects Viewer |
14+
|------------------------------------------------------------|----------------------------|--------------------|----------------|---------------|----------------|----------------|-----------------|----------------------|---------------------|---------------------|---------------------------------|----------------------------------|----------------------------------|
15+
| Access GenAI Builder | | | | | | | | X | | | | | |
16+
| Configure GenAI Builder | | | | X | | | | | | | | | |
17+
| Access Ops apps (launchpad) | | | X | | | | | | | | | | |
18+
| View projects within the org | X | X | | | | | | | | | | | |
19+
| Update and delete projects | | X | | | | | | | | | | | |
20+
| View roles assigned at the project level | X | X | | X | X | | | | | | | | |
21+
| View activity log for the org | X | X | | | | | | | | | | | |
22+
| View and download usage report for the project | | X | | X | X | | | | | | | | |
23+
| View and download usage report the the org | X | X | | | | | | | | | | | |
24+
| Create projects within the org | | X | | | | | | | | | | | |
25+
| Assign project roles | | X | | X | | | | | | | | | |
26+
| Create, edit, and delete clusters | | | | X | X | | | | | | | | |
27+
| View clusters, backups, estates, and migrations | | | | X | X | X | | | | | | | |
28+
| Assign org roles | | X | | | | | | | | | | | |
29+
| View activity log for the project | | X | | X | X | | | | | | | | |
30+
| View, edit, and delete owned projects | | | | X | | | | | | | | | |
31+
| Ingest self-managed Postgres cluster data | | | | | | | X* | | | | | | |
32+
| Create, update, and delete catalog | | | | X | X | | | | | | | | |
33+
| Read catalog | | | | | | X | | | | | | | |
34+
| Read Iceberg data | | | | | | | | | X | X | | | |
35+
| Write and delete Iceberg data | | | | | | | | | | X | | | |
36+
| View Migration Portal projects | | | | | | | | | | | X | X | X |
37+
| View and update Migration Portal projects | | | | | | | | | | | | X | X |
38+
| View, update, create, and delete Migration Portal projects | | | | | | | | | | | | | X |
3639

37-
* Only machine-users can be assigned to ingest self-managed cluster data.
40+
* Only machine-users can be assigned to ingest self-managed cluster data.

product_docs/docs/edb-postgres-ai/preview/hybrid-manager/using_hybrid_manager/managing_users/user_roles_authz/roles.mdx

Lines changed: 22 additions & 22 deletions
Original file line numberDiff line numberDiff line change
@@ -12,65 +12,65 @@ The two main categories of roles are organization-level and project-level.
1212

1313
## Organization-level roles
1414

15-
You can assign these roles to human or machine users using the **User Management** option of your user profile menu at the top-right of the navigation bar in the HM console.
15+
You can assign these roles to human or machine-users using the **User Management** option of your user profile menu at the top-right of the navigation bar in the HM console.
1616

17-
### Organization administrator (admin)
17+
### Organization Administrator
1818

1919
This role provides read access at the organization level, allowing the user to view information and settings in the organization as a whole.
2020

21-
### Organization owner (owner)
21+
### Organization Owner
2222

2323
The purpose of this role is to manage the organization at a high level.
2424
Organization owners can create projects and assign organization-level roles to other users.
2525

26-
### Platform administrator (platform admin)
26+
### Platform Administrator
2727

2828
This role is for users who need to access and manage the underlying platform components of HM.
2929
They can access platform management and monitoring tools.
3030

31-
### GenAI Builder user (GenAI Builder user)
31+
### AI Model Manager
3232

33-
This role is for users who work with the GenAI Builder feature of HM, granting them full access to its functions.
33+
This role is for users who work with the AI model and model service feature of HM, granting them full access to its functions.
3434

3535
## Project-level roles
3636

37-
These roles can be assigned to human or machine users (except for estate ingester). Select **Users** in the left navigation when viewing a project.
37+
These roles can be assigned to human or machine-users (except for Estate Ingester). Select **Users** in the left navigation when viewing a project.
3838

39-
### Project owner (owner)
39+
### Project Owner
4040

41-
In a specific project, the project owner has the highest level of authority.
41+
In a specific project, the Project Owner role has the highest level of authority.
4242
They can take all actions in that project and are responsible for assigning project-level roles to other users.
4343

44-
### Project editor (editor)
44+
### Project Editor
4545

46-
This role is for users who need to actively work with the data in a project.
47-
Project editors have data read and write access.
46+
This role is for users who need to actively work with the data in a project.
47+
Users with the Project Editor role have read and write access to data.
4848

49-
### Project viewer (viewer)
49+
### Project Viewer
5050

51-
For users who only need to observe the data in a project, the project viewer role provides data read-only access.
51+
For users who only need to observe the data in a project, the Project Viewer role provides read-only access.
5252

53-
### Estate ingester (estate ingester)
53+
### Estate Ingester
5454

55-
This role is for machine users and provides access to perform estate ingests in a project.
55+
This role is for machine-users and provides access to perform estate ingests in a project.
5656

57-
### Catalog data reader (catalog data reader)
57+
### Catalog Data Reader
5858

5959
Users with this role can read the Iceberg namespace/table/view of project-scoped catalogs.
6060

61-
### Catalog data writer (catalog data writer)
61+
### Catalog Data Writer
6262

6363
This role allows users to read, write, and delete the Iceberg namespace/table/view of all project-scoped catalogs in a project.
6464

65-
### Migration Portal projects owner
65+
### Migration Portal Projects Owner
6666

6767
This role is for users who manage Migration Portal projects in an HM project.
6868
They can create, read, update, and delete these projects.
6969

70-
### Migration Portal projects editor
70+
### Migration Portal Projects Editor
7171

7272
Users with this role can read and update Migration Portal projects in an HM project.
7373

74-
### Migration Portal projects viewer
74+
### Migration Portal Projects Viewer
7575

76-
This role provides read-only access to Migration Portal projects in an HM project.
76+
This role provides read-only access to Migration Portal projects in an HM project.

0 commit comments

Comments
 (0)