Authorizations
An authorization grants permissions to an owner to perform actions on a specific resource.
- The owner is the entity that receives permissions, such as a user, group, role, client, or mapping rule.
- The resource is the object that the permissions apply to, like a process definition or a decision instance.
Each authorization specifies which actions (e.g., READ
, UPDATE
, DELETE
) the owner is allowed to perform on the resource.
To learn more about authorizations, see authorizations.
Create an authorization
To create a new authorization:
- Log in to Identity in your cluster, and click on the Authorizations tab.
- Select a resource type from the list on the left, and click Create authorization.
- Provide the following information:
- Owner type: The entity to which you want to assign permissions, such as a User, Group, Role, Client, or Mapping rule.
- Owner ID: The unique ID of the owner.
- Resource type: The selected resource type from the list of available resources.
- Resource ID: The ID of the resource. Use
*
to grant permissions for all resources of the selected type.
- Select the permissions you want to grant.
- Click Create authorization.
The authorization is created, and the owner is granted the specified permissions.
Delete an authorization
To delete an authorization:
- Log in to Identity in your cluster, and click on the Authorizations tab.
- Select the resource type of the authorization you want to delete.
- In the list, find the authorization you want to remove and click the Delete button next to it.
- Confirm the deletion by clicking Delete in the confirmation dialog.
The authorization is deleted, and the owner no longer has the permissions granted by it.