Skip to content

Commit 88ffca1

Browse files
Gerry-FordeGerry-Forde
committed
RHIDP-7560 - Install and configure plugins from Extensions page (next phase)
1 parent ce7b59b commit 88ffca1

File tree

1 file changed

+48
-0
lines changed

1 file changed

+48
-0
lines changed

modules/dynamic-plugins/proc-extensions-configuring-rbac-role.adoc

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,48 @@
1+
[id="proc-extensions-configuring-rbac-role_{context}"]
2+
= Configuring RBAC to manage Extensions
3+
4+
You can add Extensions permissions by creating or updating and existing RBAC role. For more information about using RBAC to manage role-based controls, see link:https://docs.redhat.com/en/documentation/red_hat_developer_hub/{product-version}/html-single/authorization_in_red_hat_developer_hub/managing-authorizations-by-using-the-web-ui[Managing role-based access controls (RBAC) using the {product} Web UI].
5+
6+
== Creating a role in the {product-short} UI to manage Extensions
7+
8+
.Prequisites
9+
* You have enabled RBAC, have a policy administrator role in {product-short}, and have added plugins with permission.
10+
11+
.Procedure
12+
. Go to Administration at the bottom of the sidebar in the {product-short}.
13+
+
14+
The *RBAC* tab appears, displaying all the created roles in the Developer Hub.
15+
. Click *Create* to create a role.
16+
. Enter the user name and description (optional) of role in the given fields and click *Next*.
17+
. In *Add users and groups*, select the user name, and click *Next*.
18+
. In *Add permission policies*, select *Extensions* from the plugins dropdown.
19+
. Expand *Extensions*, select both the *Create* and *Read* permissions for the Extensions plugin and click *Next*.
20+
. Click *Create* to create the role.
21+
+
22+
image::rhdh/extensions-rbac-role-create.png[]
23+
24+
.Verification
25+
After you refresh the {product-very-short} application, when you select a plugin, the *Actions* dropdown will be active.
26+
When you click on the *Active* dropdown, you can edit the the plugin configuration, and enable or disable the plugin.
27+
28+
// Not documented
29+
// [source,yaml]
30+
// ----
31+
// p, role:default/team_a, extensions-plugin, read, allow
32+
// p, role:default/team_a, extensions-plugin, create, allow
33+
// g, user:default/<login-id/user-name>, role:default/team_a
34+
35+
// permission:
36+
// enabled: true
37+
// rbac:
38+
// admin:
39+
// users:
40+
// - name: user:default/gerry-forde
41+
// pluginsWithPermission:
42+
// - catalog
43+
// - scaffolder
44+
// - permission
45+
// - extensions
46+
// ----
47+
48+

0 commit comments

Comments
 (0)