Roles
API7 Enterprise leverages Role-Based Access Control (RBAC) to provide a comprehensive approach to managing user permissions. This powerful system allows you to define granular access control policies for both API7 Gateway and API7 Portal.
Built-in Roles
API7 Enterprise provides three types of built-in roles. The predefined roles cover common personas like API providers, Infrastructure operators, and Super admins. The RBAC system allows composing granular access control policies using these roles. Users are assigned appropriate roles based on their responsibilities and duties in the API lifecycle.
Super Admin
This role has the highest level of permissions. It can perform all administrative operations like adding/modifying routes, services, and plugins, as well as managing other users and assigning roles for them. Typically, the Super Admin role is assigned to core infrastructure administrators.
API Provider
This role enables the management of API publishing and API consumption operations, such as adding, modifying, and publishing services, routes, upstreams, applying plugins, and handling API consumers. Typically, the API Provider role is assigned to API developers.
Runtime Admin
This role enables monitoring and managing runtime configurations like gateway instances and setting alerts. It can modify gateway settings. Typically, the Runtime Admin role is assigned to platform/operations engineers.
Custom Role
Custom roles empower you to create a granular permission system within API7 Enterprise. This granular control ensures users only have the access they need to perform their tasks, enhancing security and data integrity.
Additional Resource(s)
- Getting Started -Role-Based Access Control.