Overview
Refer to the policy concepts page.Creating a Policy
Refer to the Create a Policy guide for additional details.Resource Permissions
Each resource has a set of permissions that can be assigned to a policy. Expand the dropdown below and click on a resource to view their assignable permissions.Resources
Resources
After clicking on a link, expand the
Examples
dropdown to view the list.Built-in Policies
Each org has the following built-in policies for each resource (agent, GVC, etc.):Policy Name | Description | Target | Permission | Group | Service Account |
---|---|---|---|---|---|
superusers-RESOURCE | Built-in policy granting full access to the superusers group | All Items | manage | superusers | controlplane |
viewers-RESOURCE | Built-in policy granting read-only access to the viewers group | All Items | view | viewers | none |
Permissions
The permissions below are used to define policies together with one or more of the four principal types:Permission | Description | Implies |
---|---|---|
create | Create new policies | |
delete | Delete existing policies | |
edit | Modify existing policies | view |
manage | Full access | create, delete, edit, manage, view |
view | Read-only view |