Skip to content

Commit c6ad005

Browse files
n1ru4lkamilkisiela
n1ru4l
and
kamilkisiela
authored
docs: members, member roles and permissions (#6384)
Co-authored-by: Kamil Kisiela <[email protected]>
1 parent aa1ff6a commit c6ad005

19 files changed

+370
-62
lines changed

.changeset/tall-islands-occur.md

Lines changed: 13 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -2,15 +2,20 @@
22
'hive': major
33
---
44

5-
Introduce new permission system for organization member roles.
5+
New permission system for organization member roles.
66

7-
The existing scopes assigned to organization member users are now replaced with permissions.
8-
Using the permissions allows more granular access control to features in Hive.
7+
The existing scopes assigned to organization members have been replaced with a permissions-based
8+
system, enabling more granular access control and role-based access control (RBAC) in Hive.
99

10-
This introduces the following breaking changes:
10+
**Breaking Changes**
1111

12-
- Organization members with the default `Viewer` role, will experience downgraded permissions. They will no longer be able to create targets or projects.
13-
- Organization member roles permissions for inviting, removing or assigning roles have been revoked. A organization admin will have to re-apply the permissions to the desired member roles.
14-
- Organization members with permissions for managing invites, removing members, assigning roles or modifying roles are no longer restrained in granting more rights to other users. Please be aware when granting these permissions to a user role. We recommend only assigning these to member roles that are considered "Admin" user roles.
12+
- **Viewer Role Adjustments** – Members with the default Viewer role can no longer create targets or
13+
projects.
14+
- **Restricted Role Management** – Permissions for inviting, removing, and assigning roles have been
15+
revoked. An admin must manually reassign these permissions where needed.
16+
- **Expanded Role Assignment** Capabilities – Members with permissions to manage invites, remove
17+
members, or modify roles can now grant additional permissions without restrictions. Caution is
18+
advised when assigning these rights, as they should be reserved for "Admin" roles.
1519

16-
A future update will introduce resource based access control (based on project, target, service or app deployments) for organization members.
20+
These changes enhance security and provide greater flexibility in managing user permissions across
21+
organizations.

packages/web/docs/public/docs/pages/management/members-roles-permissions/assign-role-01-start.png

58.7 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/assign-role-02-overview.png

89 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/assign-role-03-granular-access-service.png

60.7 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/create-role-01-start.png

141 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/create-role-02-wizard.png

247 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/create-role-03-confirm.png

186 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/create-role-04-success.png

93 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/delete-role-01-start.png

47.2 KB
Loading

packages/web/docs/public/docs/pages/management/members-roles-permissions/delete-role-02-confirm.png

79.8 KB
Loading

0 commit comments

Comments
 (0)