Roles

Roles map permissions to users. Roles contain any number of keychains, which contain any number of keys (permissions). Assign roles to users to grant permissions.

Roles map permissions to users. Roles contain any number of keychains, which contain any number of keys (permissions). Assign roles to users to grant permissions.

roles

Provider Admin Role

Provider Admin Role

role-provider

What is the purpose of this role?

  • Used for administration of Layer5 Cloud.
  • Used for debugging and monitoring.
  • Applicable to platform engineering team and on-prem users.

Who can assign this role?

  • Provider Admins

When this role first assigned?

  • On ☁️ boot-up (using build args)

How many instances of these roles?

  • Min: 1, Max: many (based on plan)

Who can remove assignment of this role?

  • Provider Admins

What permissions does this role have?

  • Can perform CRUD on all resources

Organization Roles

organization-administrator and manager

Organization Administrator

What is the purpose of this role?

  • Administration of an organization

Who can assign this role?

  • The Organization Owner

When this role first assigned?

  • Creation of new organization or User Account creation

How many instances of these roles?

  • Min: 1, Max: many (based on plan)
  • By default, the first Organization Admin is the owner (the creator of the organization).

Who can remove assignment of this role?

  • Organization Owner

Organization Billing Manager

What is the purpose of this role?

  • Administration of subscriptions, plans, payments, billing methods and information, spending limits, invoice mgmt etc.

Who can assign this role?

  • Organization Owner

When this role first assigned?

  • Manually by Organization Owner

How many instances of these roles?

  • Min: 0, Max: many

Who can remove assignment of this role?

  • Organization Owner

Team Roles

team-admins-and-manager

Team Administrator

What is the purpose of this role?

  • Administration of teams

Who can assign and unassign this role?

  • Organization Administrator or Team owner

When this role first assigned?

  • Creation of new team or User Account creation
  • By default, the first Team Admin is owner (the team creator)

How many instances of these roles? Min: 1, Max: many

Team Manager

What is the purpose of this role?

  • Administration of teams (without delete access)

Who can assign and unassign this role?

  • Organization Administrators or Team Owner

When this role first assigned?

  • Manually by Organization Administrator or Team Owner

How many instances of these roles?

  • Min: 0, Max: many

Last modified February 18, 2024: Fixing typos (b3d5ddb)