|
| 1 | +--- |
| 2 | +title: Users and Permissions |
| 3 | +category: Administration |
| 4 | +chapter: 12 |
| 5 | +order: |
| 6 | +--- |
| 7 | + |
| 8 | +### Permissions |
| 9 | + |
| 10 | +The OpenAPI specification describes the required permissions for each REST |
| 11 | +call. This page gives a short, non-exhaustive overview. |
| 12 | + |
| 13 | +| Permission | Grants permission to … | |
| 14 | +|-----------------------------|-----------------------------------------------------------------------------------------------| |
| 15 | +| `ACCESS_MANAGEMENT` | Manage users, permissions, teams, ACLs, LDAP | |
| 16 | +| `BOM_UPLOAD` | Upload BOMs | |
| 17 | +| `POLICY_MANAGEMENT` | Manage policies, services, license groups | |
| 18 | +| `POLICY_VIOLATION_ANALYSIS` | VEX analysis, modify violation analysis | |
| 19 | +| `PORTFOLIO_MANAGEMENT` | Modify projects, metrics, policies | |
| 20 | +| `PROJECT_CREATION_UPLOAD` | Auto-create a project when uploading a BOM | |
| 21 | +| `SYSTEM_CONFIGURATION` | Read and modify configuration properties, repositories, integrations, licenses, notifications | |
| 22 | +| `TAG_MANAGEMENT` | Modify tags | |
| 23 | +| `VIEW_BADGES` | Read badges | |
| 24 | +| `VIEW_POLICY_VIOLATION` | Read policy violations | |
| 25 | +| `VIEW_PORTFOLIO` | Read projects, services, tags, vulnerabilities, BOMs, Dependency Graph, metrics; use Search | |
| 26 | +| `VIEW_VULNERABILITY` | Read analysis decisions and findings | |
| 27 | +| `VULNERABILITY_ANALYSIS` | Record analysis decision | |
| 28 | +| `VULNERABILITY_MANAGEMENT` | Modify vunlerabilities | |
0 commit comments