Channels
pacc-may-31-2023
prefect-ai
pacc-clearcover-june-12-2023
marvin-in-the-wild
data-ecosystem
geo-israel
pacc-june-14-2023
geo-japan
pacc-london-2023
prefect-cloud
ppcc-may-16-2023
prefect-azure
prefect-docker
prefect-recipes
gratitude
geo-nyc
geo-bay-area
geo-boston
geo-london
geo-dc
geo-chicago
geo-berlin
geo-texas
geo-seattle
geo-colorado
prefect-community
data-tricks-and-tips
prefect-aws
prefect-gcp
introductions
find-a-prefect-job
prefect-dbt
random
events
ask-marvin
show-us-what-you-got
prefect-getting-started
prefect-integrations
prefect-contributors
best-practices-coordination-plane
announcements
prefect-server
prefect-ui
prefect-kubernetes
Title
j
Jeff Brainerd
04/14/2020, 2:50 PMHello Prefect team — I’m looking for documentation that details the permissions that each type of cloud user has (admin, user, restricted), as well as permissions for API tokens. For example, what types of users can start or cancel a flow, both via the UI and API? Thanks! 🙏
k
Kyle Moon-Wright
04/14/2020, 3:31 PMHey Jeff,
This is a great question, and we’ve made an issue to make this breakdown more visible. The permissions operate in the following way:
• RESTRICTED users are read only, cannot perform any actions.
• USERS can perform any action that doesn’t affect other users (i.e. run flows, state changes, etc.), they have the full experience of workflow interaction, but do not manage the team in any way.
• TENANT ADMIN can perform any action, manage the team, and are all powerful…
More information on API Token scope can be found here:
https://docs.prefect.io/orchestration/concepts/api.html#authentication
j
Jeff Brainerd
04/14/2020, 3:32 PMthanks Kyle, that is super helpful!
👍 1