You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
* Update Permissions.md
Update the orchestrator.workflow.[workflowId] description to:
Allows the user to list and read a single workflow definition and its instances that they created
* Run prettier
Signed-off-by: Marek Libra <marek.libra@gmail.com>
---------
Signed-off-by: Marek Libra <marek.libra@gmail.com>
Co-authored-by: Marek Libra <marek.libra@gmail.com>
| orchestrator.workflow | named resource | read | Allows the user to list and read any workflow definition and their instances that they created ||
9
+
| orchestrator.workflow.[`workflowId`]| named resource | read | Allows the user to list and read a _single_ workflow definition and its instances that they created||
10
+
| orchestrator.workflow.use | named resource | update | Allows the user to run or abort _any_ workflow ||
11
+
| orchestrator.workflow.use.[`workflowId`]| named resource | update | Allows the user to run or abort the _single_ workflow ||
12
+
| orchestrator.workflowAdminView | named resource | read | Allows the user to view instance variables and workflow definition editor ||
13
+
| orchestrator.instanceAdminView | named resource | read | Allows the user to view all workflow instances, including those not created by them ||
14
14
15
15
The user is permitted to do an action if either the generic permission or the specific one allows it.
16
16
In other words, it is not possible to grant generic `orchestrator.workflow` and then selectively disable it for a specific workflow via `orchestrator.workflow.use.[workflowId]` with `deny`.
0 commit comments