Add reuse file

jpipkin1 · jpipkin1 · commit 347502dc8452 · 2025-09-24T10:27:34.000-05:00
diff --git a/docs/manage/users-roles/roles/role-capabilities.md b/docs/manage/users-roles/roles/role-capabilities.md
@@ -4,11 +4,17 @@ title: Role Capabilities
 description: Assign any of these capabilities when you create user roles.
 ---
 
-Following are the capabilities you can assign when you [create roles](create-manage-roles.md), including the [APIs](/docs/api/about-apis/) available when you have the role. 
+import ApiCreateRole from '../../../reuse/api-create-role.md';
+
+Following are the capabilities you can assign when you [create roles](create-manage-roles.md). 
+
+:::note
+If you use the [createRoleV2 API](https://api.sumologic.com/docs/#operation/createRoleV2) to create a role, enter the corresponding role capability value in the `capabilities` parameter of the API.
+:::
 
 ## Data Management
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Collectors | View collectors and sources that have already been installed or added. | `viewCollectors` |
 | Manage Collectors | [View and manage](/docs/send-data) installed and hosted collectors as well as sources. | `manageCollectors` |
@@ -43,21 +49,21 @@ Following are the capabilities you can assign when you [create roles](create-man
 
 ## Entity Management
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Manage Entity Type Configs | Reserved for internal use. | `manageEntityTypeConfigs` |
 
 ## Metrics
 
-| Capability | Description | API |
+| Capability | Description | Corresponding value in the *capabilities* field of the [createRoleV2 API](https://api.sumologic.com/docs/#operation/createRoleV2) |
 | :-- | :-- | :-- |
 | Manage Metrics Transformation Rules | Create, edit, or delete [metrics transformation rules](/docs/metrics/metrics-transformation-rules). | `manageMetricsTransformationRules` |
 | Manage Logs-to-Metrics | Create, edit, or delete [Logs-to-Metrics](/docs/metrics/logs-to-metrics) rules. | `manageLogsToMetrics` |
 | Manage Metrics Rules | Create, edit, or delete [metrics rules](/docs/metrics/metric-rules-editor/). | `manageMetricsRules` |
 
 ## Security
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Manage Password Policy|Set the password policy for your Sumo Logic account. | `managePasswordPolicy` |
 |Allowlist IP Addresses | [Explicitly grant access](/docs/manage/security/create-allowlist-ip-cidr-addresses) to specific IP addresses or address ranges. | `allowlistIpAddresses` |
@@ -72,27 +78,27 @@ Following are the capabilities you can assign when you [create roles](create-man
 
 ## Dashboards
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Share Dashboards with the World | [Share dashboards](/docs/dashboards/share-dashboard-outside-org) in view-only mode with no login required. | `shareDashboardsWithTheWorld` |
-| Share Dashboards with the Allowlist | [Share dashboards](/docs/dashboards/share-dashboard-new/) in view-only mode; viewers must be on your service allowlist. | `shareDashboardsWithYourAllowlist` and `shareDashboardWhitelist` |
+| Share Dashboards with the Allowlist | [Share dashboards](/docs/dashboards/share-dashboard-new/) in view-only mode; viewers must be on your service allowlist. | `shareDashboardsWithYourAllowlist` |
 
 ## User Management
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Manage Users And Roles | Access the UI pages to manage [users](/docs/manage/users-roles/users) and [roles](/docs/manage/users-roles/roles). | `manageUsersAndRoles` |
 
 ## Audit Event Management
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Access Search Audit Events | View and download audit logs of search queries executed in the UI. | `accessSearchAuditEvents` |
 | Access Audit Events | View and download audit logs of admin and config events. | `accessAuditEvents` |
 
 ## Automation Service
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Task View|See tasks in [playbooks](/docs/platform-services/automation-service/playbooks/). | `taskView` |
 | Task Access | Access your tasks in playbooks. | `taskAccess` |
@@ -111,7 +117,7 @@ Following are the capabilities you can assign when you [create roles](create-man
 
 ## Alerting
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Monitors |If folder perms are enabled, view folders & monitors you have access to. | `viewMonitors` |
 | Manage Monitors | Create folders & monitors, grant perms, and (with folder perms) full CRUD on folders you control. | `manageMonitors` |
@@ -123,51 +129,53 @@ Following are the capabilities you can assign when you [create roles](create-man
 <!-- 
 ## Open Analytics
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Manage Open Analytics Endpoint | ? | ? |
 -->
 
 ## Usage Management
 
-| Capability | Description | API |
+<!-- `viewBudgets` is a guess. It doesn't appear in the `capabilities` parameter list. -->
+
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
-| View Usage Management | View [usage management](/docs/manage/manage-subscription/usage-management/). | `getBudgets`, `getBudget`, `getBudgetUsages`, `getBudgetUsage` |
-| Manage Usage Management | Manage usage management. | `createBudget`, `updateBudget`, `deleteBudget` |
+| View Usage Management | View [usage management](/docs/manage/manage-subscription/usage-management/). | `viewBudgets` |
+| Manage Usage Management | Manage usage management. | `manageBudgets` |
 
 ## Reliability Management
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View SLOs | View [Service Level Objectives (SLOs)](/docs/observability/reliability-management-slo/create-slo/). | `viewSLOs` |
 | Manage SLOs | Create, edit, and delete SLOs. | `manageSLOs` |
 
 ## Threat Intel
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Threat Intel Data Store | View the [Threat Intelligence](/docs/security/threat-intelligence/about-threat-intelligence/) tab. | `viewThreatIntelDataStore` |
 | Manage Threat Intel Data Store | Create, edit, and delete threat intel sources. | `manageThreatIntelDataStore` |
 
 <!-- 
 ## Macros
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | Manage Macros | ? | ? |
 -->
 
 <!-- 
 ## Data Masking
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Unmasked Data | ? | ? |
 -->
 
 ## Organizations
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Organizations | View the [Organizations](/docs/manage/manage-subscription/create-and-manage-orgs/create-manage-orgs) UI. | `viewOrganizations` |
 | Create Organizations | Create and provision child organizations. | `createOrganizations` |
@@ -184,7 +192,7 @@ Following are the capabilities you can assign when you [create roles](create-man
 This section is for our Cloud SOAR SaaS version. If you have a legacy Cloud SOAR instance URL matching the pattern `*.soar.sumologic.com`, see [Legacy Cloud SOAR](#legacy-cloud-soar).
 :::
 
-| Capability category | Capability | Description| API |
+| Capability category | Capability | Description| <ApiCreateRole/> |
 | :-- | :-- | :-- |:--|
 |View Cloud SOAR||Show “Cloud SOAR” link in nav.|`viewCloudSoar`|
 |Incident|View|View all [incidents](/docs/cloud-soar/incidents-triage/).|`cloudSoarIncidentView`|
@@ -238,7 +246,7 @@ This section is for our Cloud SOAR SaaS version. If you have a legacy Cloud SOAR
 
 ### Legacy Cloud SOAR
 
-| Capability | Description | API |
+| Capability | Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 | View Cloud SOAR|Show “Cloud SOAR” link in nav (legacy URL). | `viewCloudSoarLegacy` |
 | Settings General| Configure legacy settings. | `settingsGeneralLegacy` |
@@ -248,13 +256,13 @@ This section is for our Cloud SOAR SaaS version. If you have a legacy Cloud SOAR
 
 [Cloud SIEM](/docs/cse/) features only show if enabled.
 
-| Capability| Description | API |
+| Capability| Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 |View Cloud SIEM|Show “Cloud SIEM” link in nav.|`viewCse`|
 
 ### Insights
 
-| Capability| Description | API |
+| Capability| Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 |Comment on Insights|Add comments to [Insights](/docs/cse/get-started-with-cloud-siem/about-cse-insight-ui).|`cseCommentOnInsights`|
 |Create Insights|Create new Insights.|`cseCreateInsights`|
@@ -267,7 +275,7 @@ This section is for our Cloud SOAR SaaS version. If you have a legacy Cloud SOAR
 
 ### Content
 
-| Capability| Description | API |
+| Capability| Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 |View Rules|View [rules](/docs/cse/rules/about-cse-rules).|`cseViewRules`|
 |Manage Rules|Create, edit, delete rules.|`cseManageRules`|
@@ -286,7 +294,7 @@ This section is for our Cloud SOAR SaaS version. If you have a legacy Cloud SOAR
 
 ### Configuration
 
-| Capability| Description | API |
+| Capability| Description | <ApiCreateRole/> |
 | :-- | :-- | :-- |
 |View Mappings|View [mappings](/docs/cse/schema/create-structured-log-mapping).|`cseViewMappings`|
 |Manage Mappings|Create, edit, delete mappings.|`cseManageMappings`|
diff --git a/docs/reuse/api-create-role.md b/docs/reuse/api-create-role.md
@@ -0,0 +1 @@
+Value in *capabilities* parameter of [createRoleV2 API](https://api.sumologic.com/docs/#operation/createRoleV2)

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+Value in capabilities parameter of [createRoleV2 API](https://api.sumologic.com/docs/#operation/createRoleV2)`