Dong, Qiu Jian 38e4c01e6c SWR UMN: Permission description is added

Reviewed-by: Eotvos, Oliver <oliver.eotvos@t-systems.com>
Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Dong, Qiu Jian <qiujiandong1@huawei.com>
Co-committed-by: Dong, Qiu Jian <qiujiandong1@huawei.com>

2024-06-18 06:49:13 +00:00

5.2 KiB

Raw Blame History

SWR Permissions

By default, new IAM users do not have any permissions granted. You need to add them to one or more groups and attach permissions policies or roles to these groups. In this way, the users can inherit permissions from the groups and perform operations on specific cloud resources.

SWR is a project-level service deployed and accessed in specific physical regions. To assign AOM permissions to a user group, specify the scope as region-specific projects and select projects for the permissions to take effect. If All projects is selected, the permissions will take effect for the user group in all region-specific projects. When accessing SWR, the users need to switch to a Region where they have been authorized to use this service.

**Table 1** SWR permissions
Name	Description	Type
SWR Administrator	SWR administrator permissions, including all SWR permissions.	System-defined role
Tenant Administrator	Administrator permissions for all services except IAM, including all SWR permissions.	System-defined role
Tenant Guest	Read-only permissions for all services except IAM, including permissions such as image pull.	System-defined role
ServiceStage Developer	ServiceStage developer permissions, including permissions such as image pull.	System-defined role

Granting user permissions enables you to grant read, write, and management permissions to different users for them to access either a specific image or images of a specific organization.

Parent topic: Permissions

5.2 KiB Raw Blame History

SWR Permissions

5.2 KiB

Raw Blame History