Skip to content

Commit fe108d1

Browse files
jasonnovichRunAIjasonnovichRunAI
committed
new table include L2 researcher
1 parent b8b3045 commit fe108d1

File tree

1 file changed

+28
-28
lines changed
  • docs/admin/runai-setup/access-control

1 file changed

+28
-28
lines changed

docs/admin/runai-setup/access-control/rbac.md

Lines changed: 28 additions & 28 deletions
Original file line numberDiff line numberDiff line change
@@ -16,33 +16,33 @@ A *Subject* is an entity that receives the rule. *Subjects* are:
1616

1717
### Roles
1818

19-
A role is a combination of entities and actions. Run:ai supports the following roles and actions:
20-
21-
| Managed Entity | System Admin (1) | Department Admin (4) | Editor (5) | Research Manager | Researcher | ML Eng. | Viewer | Researcher L1 | Environments Admin | Data Sources Admin | Compute Resources Admin | Templates Admin | Department Viewer |
22-
|:-|:-|:-|:-|:-|:-|:-|:-|:-|:-|:-|:-|:-|:-|
23-
| Create local users and applications | CRUD | CRUD | | | | | | | | | | | |
24-
| Assign Users/Groups/Apps to Roles with scopes (Departments, Projects) | CRUD | CRUD | CRUD | | | | | | | | | | |
25-
| Roles | CRUD | R | R | | | | | | | | | | |
26-
| Departments | CRUD | R (6) | CRUD | | | R | R | | R | R | R | R | R |
27-
| Projects | CRUD | CRUD | CRUD | R (2) (3) | R | R | R | R | R | R | R | R | R |
28-
| Jobs | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | R | R | R | R | R |
29-
| Deployments | CRUD | CRUD | R | | | CRUD | R | | | | | | R |
30-
| Workspaces | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | R | R | R | R | R |
31-
| Trainings | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | R | R | R | R | R |
32-
| Environments | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | CRUD | R | R | R | R |
33-
| Data Sources | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | CRUD | R | R | R |
34-
| Compute Resources | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | R | CRUD | R | R |
35-
| Templates | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | R | R | CRUD | R |
36-
| Policies (7) | CRUD | CRUD | R | R | R | R | R | R | R | R | R | R | R |
37-
| Clusters | CRUD | R | R | R | R | R | R | R | R | R | R | R | R |
38-
| Node Pools | CRUD | R | R | | | R | R | | | | | | |
39-
| Nodes | R | R | R | | | R | R | | | | | | |
40-
| Settings.General | CRUD | | | | | | | | | | | | |
41-
| Credentials (Settings.Cre...) | CRUD | R | R | R | R | R | R | R | | R | | | |
42-
| Events History | R | | | | | | | | | | | | |
43-
| Dashboard.Overview | R | R | R | R | R | R | R | R | R | R | R | R | R |
44-
| Dashboards.Analytics | R | R | R | R | R | R | R | R | R | R | R | R | R |
45-
| Dashboards.Consumption | R | R | | | | | | | | | | | |
19+
A role is a combination of entities and actions. Run:ai supports the following roles and actions within the user's granted scope:
20+
21+
| Managed Entity | System Admin (1) | Department Admin (4) | Editor (5) | Research Manager | Researcher | ML Eng. | Viewer | Researcher L1 | Researcher L2 | Environments Admin | Data Sources Admin | Compute Resources Admin | Templates Admin | Department Viewer |
22+
|-----------------------------------------------------------------------|------------------|----------------------|------------|------------------|------------|---------|--------|---------------|---------------|--------------------|--------------------|-------------------------|-----------------|-------------------|
23+
| Create local users and applications | CRUD | CRUD | | | | | | | | | | | | |
24+
| Assign Users/Groups/Apps to Roles with scopes (Departments, Projects) | CRUD | CRUD | CRUD | | | | | | | | | | | |
25+
| Roles | CRUD | R | R | | | | | | | | | | | |
26+
| Departments | CRUD | R (6) | CRUD | | | R | R | | | R | R | R | R | R |
27+
| Projects | CRUD | CRUD | CRUD | R (2) (3) | R | R | R | R | CRUD | R | R | R | R | R |
28+
| Jobs | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | CRUD | R | R | R | R | R |
29+
| Deployments | CRUD | CRUD | R | | | CRUD | R | | | | | | | R |
30+
| Workspaces | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | CRUD | R | R | R | R | R |
31+
| Trainings | CRUD | CRUD | CRUD | R | CRUD | | R | CRUD | | R | R | R | R | R |
32+
| Environments | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | CRUD | R | R | R | R |
33+
| Data Sources | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | R | CRUD | R | R | R |
34+
| Compute Resources | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | R | R | CRUD | R | R |
35+
| Templates | CRUD | CRUD | CRUD | CRUD | CRUD | | R | R | R | R | R | R | CRUD | R |
36+
| Policies (7) | CRUD | CRUD | R | R | R | R | R | R | | R | R | R | R | R |
37+
| Clusters | CRUD | R | R | R | R | R | R | R | | R | R | R | R | R |
38+
| Node Pools | CRUD | R | R | | | R | R | | | | | | | |
39+
| Nodes | R | R | R | | | R | R | | | | | | | |
40+
| Settings.General | CRUD | | | | | | | | | | | | | |
41+
| Credentials (Settings.Cre...) | CRUD | R | R | R | R | R | R | R | | | R | | | |
42+
| Events History | R | | | | | | | | | | | | | |
43+
| Dashboard.Overview | R | R | R | R | R | R | R | R | R | R | R | R | R | R |
44+
| Dashboards.Analytics | R | R | R | R | R | R | R | R | R | R | R | R | R | R |
45+
| Dashboards.Consumption | R | R | | | | | | R | R | | | | | |
4646

4747
Permissions: **C** = Create, **R** = Read, **U** = Update, **D** = Delete
4848

@@ -87,7 +87,7 @@ An *Access rule* is the assignment of a *Role* to a *Subject* in a *Scope*. *Acc
8787

8888
`<subject> is a <role> in a <scope>`.
8989

90-
**For example:**
90+
**For example**:
9191
User **user@domain.com** is a **department admin** in **Department A**.
9292

9393
### Create or delete rules

0 commit comments

Comments
 (0)