github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-05-07 08:56:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
83621acd1aa35b71d528043bbcf2bb2ba31abcfc
paralus/scripts/initialize/roles/gitops/roles.json

521 lines
19 KiB
JSON
Raw Blame History

{
"SYSTEM": {
"SUPER_ADMIN": [
"ops_star.all"
],
"PARTNER_ADMIN": [
"ops_star.all"
]
},
"ORGANIZATION": {
"ADMIN": [
"user.read",
"user.write",
"group.read",
"group.write",
"console.all",
"registryauthkey.read",
"registryauthkey.write",
"namespace.read",
"project.namespace.read",
"project.namespace.customer.read",
"namespace.write",
"project.namespace.write",
"project.namespace.customer.write",
"partner.read",
"project.read",
"project.write",
"project.admin.write",
"registry.read",
"registry.write",
"project.registry.read",
"project.registry.write",
"registryimage.read",
"registryimage.write",
"role.read",
"role.write",
"workload.read",
"project.workload.read",
"project.workload.customer.read",
"workload.write",
"project.workload.write",
"project.workload.customer.write",
"workload.publish",
"project.workload.publish",
"template.read",
"sso.read",
"sso.write",
"ssouser.write",
"ssouser.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.taskset.read",
"project.taskset.write",
"project.placement.read",
"project.placement.write",
"project.override.read",
"project.override.write",
"project.clusterOverride.read.workload",
"project.clusterOverride.write.workload",
"project.integrationEndpoint.read",
"project.integrationEndpoint.write",
"project.container.registry.read",
"project.container.registry.write",
"kubeconfig.read",
"kubeconfig.write",
"v2debug.read",
"kubectl.clustersettings.read",
"kubectl.clustersettings.write",
"kubectl.fullaccess",
"project.v2.scheduler.placement.read",
"project.v2.scheduler.placement.write",
"project.v2.config.workload.read",
"project.v2.config.workload.write",
"project.v2.config.workloadtemplate.read",
"project.v2.config.workloadtemplate.write",
"org.auditLog.read",
"org.relayAudit.read",
"audit.read",
"project.repository.read",
"project.repository.write",
"project.trigger.read",
"project.trigger.write",
"project.pipeline.read",
"project.pipelinesummary.read",
"project.pipeline.write",
"project.pipeline.org.admin.write",
"project.infra.provisioner.read",
"project.infra.provisioner.write",
"project.infra.provisioner.runtime.read",
"project.pipeline.variable.read",
"project.pipeline.variable.write",
"project.approval.read",
"project.approval.write",
"project.myapproval.read",
"project.approvalsummary.read",
"project.myapprovalsummary.read",
"project.trigger.customer.read",
"project.trigger.customer.write",
"project.pipeline.customer.read",
"project.pipelinesummary.customer.read",
"project.pipeline.customer.write",
"project.approval.customer.read",
"project.approval.customer.write",
"organization.read",
"organization.write",
"project.dashboard.workload.read",
"project.systemsync.write",
"project.systemsync.read",
"hub.cluster.read",
"hub.cluster.write",
"hub.infraprovisioner.read",
"hub.infraprovisioner.write",
"hub.namespace.read",
"hub.namespace.write",
"hub.openapi.explorer.read",
"hub.pipeline.read",
"hub.pipeline.write",
"project.read",
"project.write",
"hub.workload.read",
"hub.workload.write",
"hub.workloadtemplate.read",
"hub.workloadtemplate.write",
"hub.repository.read",
"hub.repository.write"
],
"ADMIN_READ_ONLY": [
"user.read",
"group.read",
"console.all",
"account.read",
"registryauthkey.read",
"namespace.read",
"project.namespace.read",
"project.namespace.customer.read",
"partner.read",
"project.read",
"registry.read",
"project.registry.read",
"registryimage.read",
"role.read",
"workload.read",
"project.workload.read",
"project.workload.customer.read",
"template.read",
"sso.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.taskset.read",
"project.placement.read",
"project.override.read",
"project.clusterOverride.read.workload",
"project.integrationEndpoint.read",
"project.container.registry.read",
"kubeconfig.read",
"v2debug.read",
"kubectl.clustersettings.read",
"kubectl.cluster.read",
"project.v2.scheduler.placement.read",
"project.v2.config.workload.read",
"project.v2.config.workloadtemplate.read",
"org.auditLog.read",
"org.relayAudit.read",
"audit.read",
"project.repository.read",
"project.trigger.read",
"project.pipeline.read",
"project.pipelinesummary.read",
"project.infra.provisioner.read",
"project.infra.provisioner.runtime.read",
"project.pipeline.variable.read",
"project.approval.read",
"project.myapproval.read",
"project.approvalsummary.read",
"project.myapprovalsummary.read",
"project.trigger.customer.read",
"project.pipeline.customer.read",
"project.pipelinesummary.customer.read",
"project.approval.customer.read",
"organization.read",
"project.dashboard.workload.read",
"project.systemsync.read",
"hub.cluster.read",
"hub.infraprovisioner.read",
"hub.namespace.read",
"hub.openapi.explorer.read",
"hub.pipeline.read",
"project.read",
"hub.workload.read",
"hub.workloadtemplate.read",
"hub.repository.read"
]
},
"PROJECT": {
"PROJECT_ADMIN": [
"console.all",
"registryauthkey.read",
"registryauthkey.write",
"project.namespace.read",
"project.namespace.write",
"project.namespace.customer.read",
"project.namespace.customer.write",
"partner.read",
"project.read",
"project.admin.write",
"registry.read",
"registry.write",
"registryimage.read",
"registryimage.write",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.workload.read",
"project.workload.write",
"project.workload.customer.read",
"project.workload.customer.write",
"project.workload.publish",
"project.taskset.read",
"project.taskset.write",
"project.placement.read",
"project.placement.write",
"project.override.read",
"project.override.write",
"project.clusterOverride.read.workload",
"project.clusterOverride.write.workload",
"project.integrationEndpoint.read",
"project.integrationEndpoint.write",
"project.container.registry.read",
"project.container.registry.write",
"template.read",
"project.registry.read",
"project.registry.write",
"kubeconfig.read",
"v2debug.read",
"kubectl.fullaccess",
"project.v2.scheduler.placement.read",
"project.v2.scheduler.placement.write",
"project.v2.config.workload.read",
"project.v2.config.workload.write",
"project.v2.config.workloadtemplate.read",
"project.v2.config.workloadtemplate.write",
"project.repository.read",
"project.repository.write",
"project.pipeline.read",
"project.pipelinesummary.read",
"project.pipeline.write",
"project.pipeline.variable.read",
"project.pipeline.variable.write",
"project.pipeline.customer.read",
"project.pipelinesummary.customer.read",
"project.pipeline.customer.write",
"project.infra.provisioner.read",
"project.infra.provisioner.write",
"project.infra.provisioner.runtime.read",
"project.trigger.read",
"project.trigger.write",
"project.trigger.customer.read",
"project.trigger.customer.write",
"project.approval.read",
"project.approval.write",
"project.myapproval.read",
"project.approvalsummary.read",
"project.myapprovalsummary.read",
"project.approval.customer.read",
"project.approval.customer.write",
"project.dashboard.workload.read",
"project.systemsync.write",
"project.systemsync.read",
"hub.cluster.read",
"hub.cluster.write",
"hub.infraprovisioner.read",
"hub.infraprovisioner.write",
"hub.namespace.read",
"hub.namespace.write",
"hub.openapi.explorer.read",
"hub.pipeline.read",
"hub.pipeline.write",
"project.read",
"project.write",
"hub.workload.read",
"hub.workload.write",
"hub.workloadtemplate.read",
"hub.workloadtemplate.write",
"hub.repository.read",
"hub.repository.write"
],
"PROJECT_READ_ONLY": [
"console.all",
"project.namespace.read",
"project.namespace.customer.read",
"partner.read",
"project.read",
"registry.read",
"registryimage.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.workload.read",
"project.workload.customer.read",
"project.taskset.read",
"project.placement.read",
"project.override.read",
"project.clusterOverride.read.workload",
"project.integrationEndpoint.read",
"project.container.registry.read",
"sso.read",
"template.read",
"project.registry.read",
"kubeconfig.read",
"v2debug.read",
"kubectl.cluster.read",
"project.v2.scheduler.placement.read",
"project.v2.config.workload.read",
"project.v2.config.workloadtemplate.read",
"project.repository.read",
"project.pipeline.read",
"project.pipelinesummary.read",
"project.pipeline.customer.read",
"project.pipelinesummary.customer.read",
"project.infra.provisioner.read",
"project.infra.provisioner.runtime.read",
"project.pipeline.variable.read",
"project.trigger.read",
"project.trigger.customer.read",
"project.approval.read",
"project.myapproval.read",
"project.approvalsummary.read",
"project.myapprovalsummary.read",
"project.approval.customer.read",
"project.dashboard.workload.read",
"project.systemsync.read",
"hub.cluster.read",
"hub.infraprovisioner.read",
"hub.namespace.read",
"hub.openapi.explorer.read",
"hub.pipeline.read",
"project.read",
"hub.workload.read",
"hub.workloadtemplate.read",
"hub.repository.read"
],
"INFRA_ADMIN": [
"console.all",
"registryauthkey.read",
"registryauthkey.write",
"project.namespace.read",
"project.namespace.write",
"project.namespace.customer.read",
"project.namespace.customer.write",
"partner.read",
"project.read",
"template.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.taskset.read",
"project.taskset.write",
"project.placement.read",
"project.placement.write",
"project.override.read",
"project.override.write",
"project.integrationEndpoint.read",
"project.integrationEndpoint.write",
"project.container.registry.read",
"project.container.registry.write",
"kubeconfig.read",
"v2debug.read",
"kubectl.clustersettings.read",
"kubectl.clustersettings.write",
"kubectl.fullaccess",
"project.v2.scheduler.placement.read",
"project.v2.scheduler.placement.write",
"project.v2.config.workload.read",
"project.v2.config.workload.write",
"project.v2.config.workloadtemplate.read",
"project.v2.config.workloadtemplate.write",
"project.infra.provisioner.read",
"project.infra.provisioner.write",
"project.infra.provisioner.runtime.read",
"project.repository.read",
"project.repository.write",
"project.dashboard.workload.read",
"project.systemsync.write",
"project.systemsync.read",
"hub.cluster.read",
"hub.cluster.write",
"hub.namespace.read",
"hub.namespace.write",
"hub.openapi.explorer.read"
],
"INFRA_READ_ONLY": [
"console.all",
"project.namespace.read",
"project.namespace.customer.read",
"partner.read",
"project.read",
"template.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.taskset.read",
"project.placement.read",
"project.override.read",
"project.integrationEndpoint.read",
"project.container.registry.read",
"kubeconfig.read",
"v2debug.read",
"kubectl.clustersettings.read",
"kubectl.cluster.read",
"project.v2.scheduler.placement.read",
"project.v2.config.workload.read",
"project.v2.config.workloadtemplate.read",
"project.repository.read",
"project.infra.provisioner.read",
"project.infra.provisioner.runtime.read",
"project.dashboard.workload.read",
"project.systemsync.read",
"hub.cluster.read",
"hub.namespace.read",
"hub.openapi.explorer.read"
],
"NAMESPACE_READ_ONLY": [
"partner.read",
"project.read",
"registry.read",
"registryimage.read",
"project.workload.read",
"project.v2.config.workloadtemplate.read",
"project.workload.customer.read",
"project.taskset.read",
"project.placement.read",
"project.override.read",
"project.clusterOverride.read.workload",
"project.integrationEndpoint.read",
"project.container.registry.read",
"sso.read",
"template.read",
"project.registry.read",
"kubeconfig.read",
"v2debug.read",
"kubectl.namespace.read",
"project.namespace.read",
"project.namespace.customer.read",
"hub.namespace.read",
"hub.openapi.explorer.read",
"hub.workload.read"
],
"NAMESPACE_ADMIN": [
"console.all",
"registryauthkey.read",
"registryauthkey.write",
"partner.read",
"project.read",
"project.admin.write",
"registry.read",
"registry.write",
"registryimage.read",
"registryimage.write",
"project.workload.read",
"project.workload.write",
"project.workload.customer.read",
"project.workload.customer.write",
"project.workload.publish",
"project.taskset.read",
"project.taskset.write",
"project.placement.read",
"project.placement.write",
"project.override.read",
"project.override.write",
"project.clusterOverride.read.workload",
"project.clusterOverride.write.workload",
"project.integrationEndpoint.read",
"project.integrationEndpoint.write",
"project.container.registry.read",
"project.container.registry.write",
"template.read",
"project.registry.read",
"project.registry.write",
"kubeconfig.read",
"v2debug.read",
"kubectl.namespace.write",
"project.namespace.read",
"project.namespace.customer.read",
"hub.namespace.read",
"hub.namespace.write",
"hub.openapi.explorer.read",
"hub.workload.read",
"hub.workload.write"
],
"CLUSTER_ADMIN": [
"console.all",
"project.namespace.read",
"project.namespace.customer.read",
"partner.read",
"project.read",
"template.read",
"project.auditLog.read",
"project.relayAudit.read",
"project.audit.read",
"project.taskset.read",
"project.placement.read",
"project.override.read",
"project.integrationEndpoint.read",
"project.container.registry.read",
"kubeconfig.read",
"v2debug.read",
"kubectl.clustersettings.read",
"kubectl.clustersettings.write",
"kubectl.cluster.read",
"project.v2.scheduler.placement.read",
"project.v2.config.workload.read",
"project.v2.config.workloadtemplate.read",
"project.repository.read",
"project.infra.provisioner.read",
"project.infra.provisioner.runtime.read",
"project.dashboard.workload.read"
]
}
}
Reference in New Issue View Git Blame Copy Permalink