Permissions
The tenant file allows you to define permissions for your members inside your tenant. Permissions are used to restrict access to certain features of your tenant on the different services.
A permission is represented by a string. You can find them in the Permissions Reference.
How to add permissions
As you saw in the previous section, the tenant file
contains a groups property. This property is an array of groups. Each group
contains a permissions property which is an array of permissions.
# ...
groups:
- slug: group-A
permissions:
- INTRA_REPO_CLONE
members: [xavier.login]
You can simply add a permission to a group by adding it to the permissions
array. You can also create a new group and add permissions to it.
Permissions Reference
Intranet
| Permission name | Description |
|---|---|
INTRA_TRACE_READ | Allows the user to read traces on Operator. |
INTRA_TRACE_RETRY | Allows the user to retry traces on Operator. |
INTRA_TRACE_PUBLISH | Allows the user to publish traces on Operator (i.e. make traces visible for students). |
INTRA_IMPERSONATE | Allows the user to impersonate other users on the Forge Intranet. |
INTRA_REPO_CLONE | Allows the user to clone student repositories on the Forge Intranet. |
INTRA_NODE_READ | Allows the user to access all nodes where they are registered without having to validate previous nodes. |
To impersonate a user, you need to add ?login=<login> in the URL. (e.g.,
?login=xavier.login)
INTRA_IMPERSONATEImpersonation does not work on the home page of the intranet because no tenant is selected yet on this page.
INTRA_NODE_READThis permission does not allow the user to make a submission on a node.
Forms
| Permission name | Description |
|---|---|
FORMS_CREATE | Allows the user to create forms. |
FORMS_PUBLISH | Allows the user to publish forms. |
FORMS_REGISTRATION | Allows the user to add surveyed people to forms. |
FORMS_EXPORT | Allows the user to access the result page |
Syllabus
| Permission name | Description |
|---|---|
SYLLABUS_READ | Allows the user to read existing syllabus. |
SYLLABUS_CREATE | Allows the user to create syllabus. |