Assigning Roles to Users
Non-Federated OPERA Cloud Identity Management Customers
- OHIPADMIN
- OHIPDEVELOPER
- OHIPANALYTICS
- OHIPENVIRONMENTS
- OHIPVIEW
- DEVELOPERPORTALACCESS (will be deprecated in future)
Table 2-1 Application Roles
| OHIPADMIN | OHIPDEVELOPER | OHIPANALYTICS | OHIPENVIRONMENTS | OHIPVIEW | DEVELOPERPORTALACCESS | |
|---|---|---|---|---|---|---|
|
API Documentation |
View |
View |
No Access |
No Access |
View |
View |
|
Applications |
View-Add-Edit-Delete |
View-Add-Edit-Delete |
No Access |
View |
View |
View-Add-Edit-Delete |
|
Application Key |
View-Reissue-Copy |
View-Reissue-Copy |
No Access |
No Access |
No Access |
View-Reissue-Copy |
|
Environment |
View-Add-Remove |
View |
No Access |
View-Add-Remove |
View |
View-Add-Remove |
|
API Analytics |
View |
View |
View |
No Access |
View |
View |
|
Client Secret |
Read-Issue |
Read |
No Access |
Read-Issue |
No Access |
Issue |
|
Approve Partner Connections (Includes module and Property Level Access) |
Yes |
No Access |
No Access |
Yes |
No Access |
Yes |
|
Approve Streaming Applications (Within Applications) |
Yes |
No Access |
No Access |
Yes |
No Access |
Yes |
For details on how to assign group membership to users in Non-Federated OPERA Cloud Identity Management, refer to Assigning and Removing Group Membership in the OPERA Cloud Identity Management Administrator Guide.
Federated OPERA Cloud Identity Management Customers
To access the Developer Portal, identity administrators must first create a Custom Group for OHIP at a chain level (<Chain Code>-DEVELOPERPORTALACCESS, <Chain Code>-OHIPADMIN, <Chain Code>-OHIPDEVELOPER, <Chain Code>-OHIPANALYTICS, <Chain Code>-OHIPENVIRONMENTS, <Chain Code>-OHIPVIEW) in their respective identity provider. For more details on Custom groups, refer to OPERA Cloud Identity Management Seeded Groups in the Identity Federation Overview guide.
Once the Custom group for OHIP is created at a chain level, administrators must assign the users to this custom group in their respective identity provider.
Note:
Users must be chain-level users to be granted DEVELOPERPORTALACCESS, OHIPADMIN, OHIPDEVELOPER, OHIPANALYTICS, OHIPENVIRONMENTS, and OHIPVIEW group membership and to successfully access the Developer Portal.
Note:
Developer Portal users do not have the ability to call APIs.