Wiki source code of Users and roles

Version 7.2 by Boris Folgmann on 2026/05/20 13:12

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Children
- Content
- Comments
- Likes

version	line-number	content
1.1	1	{{toc depth="1"/}}
	2
	3	= Role Model =
	4
7.2	5	== Portal Roles ==
	6
	7	\|=Portal \|=
	8	\| \|
	9	\| \|
	10
7.1	11	== Project Roles ==
	12
1.1	13	Each user who is a member of a project has to be in //exactly one// Project Role. Therefore it is not possible to have no or multiple roles in a project.
	14
	15	Different roles have different sets of permissions. Possible roles are:
	16
7.2	17	(% class="responsive-table" %)
	18	(% class="active" %)\|=(((
1.1	19	Role
5.1	20	)))\|=(((
6.3	21	Description
1.1	22	)))
5.1	23	\|(((
1.1	24	Admin
5.1	25	)))\|(((
6.3	26	Full access, even to potentially dangerous operations like deleting content in the Project. Can administer Project Members and Roles.
1.1	27	)))
5.1	28	\|(((
1.1	29	Master
6.3	30	)))\|Elevated write acccess, excluding potentially dangerous operations which can lead to massive data loss or other unrevertable changes.
5.1	31	\|(((
1.1	32	Developer
5.1	33	)))\|(((
7.1	34	General read-write access to contribute to the Project
1.1	35	)))
5.1	36	\|(((
1.1	37	Viewer
5.1	38	)))\|(((
1.1	39	Read-only access to all not security-relevant data in the Project
	40	)))
	41
	42	Currently, the role assignment is applied for all tools within one project.
	43
	44	{{info}}
	45	Note:
	46	To ensure the integrity of the applications in the context of the managed service, no customer user is allowed to get system admin permissions for the tools. The maximum permissions for a customer user is the "Project Admin" role as described here
	47	{{/info}}
	48
5.1	49	= User Permissions in DevOps Portal =
1.1	50
5.1	51	\|=(((
1.1	52	Role Type
5.1	53	)))\|=(% colspan="3" rowspan="1" %)(((
	54	Portal Role
	55	)))\|=(% rowspan="23" %) \|=(% colspan="4" %)(((
1.1	56	Project Role
	57	)))
5.1	58	\|(((
1.1	59	Role Name
5.1	60	)))\|(((
1.1	61	User
5.1	62	)))\|(((
1.1	63	Admin
5.1	64	)))\|(((
	65	Creator
	66	)))\|(((
1.1	67	Viewer
5.1	68	)))\|(((
1.1	69	Developer
5.1	70	)))\|(((
1.1	71	Master
5.1	72	)))\|(((
1.1	73	Admin
	74	)))
5.1	75	\|Login to DevOps Portal\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	76	\|Logout from DevOps Portal\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	77	\|Change my password\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	78	\|Reset forgotten password\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	79	\|Display list of users\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	80	\|Search for user \|✅\|✅\|✅\|✅\|✅\|✅\|✅
	81	\|Add or remove "Corporate Admin" role to user \|❌\|✅\|❌\|❌\|❌\|❌\|❌
	82	\|Create User\|❌\|✅\|✅\|❌\|❌\|❌\|❌
	83	\|Delete User\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	84	\|Lock User\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	85	\|Unlock User\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	86	\|Send invitation mail for first login\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	87	\|Display list of projects \|❌\|✅\|❌\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects
	88	\|Search for project \|❌\|✅\|❌\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects
	89	\|Create project \|❌\|✅\|✅\|❌\|❌\|❌\|❌
	90	\|Delete project\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	91	\|Retire project \|❌\|✅\|❌\|❌\|❌\|❌\|⚠ Only his projects
	92	\|Reactivate project\|❌\|✅\|❌\|❌\|❌\|❌\|⚠ Only his projects
	93	\|Add User to Project\|❌\|✅\|❌\|❌\|❌\|❌\|⚠ Only his projects
	94	\|Remove User from Project\|❌\|✅\|❌\|❌\|❌\|❌\|⚠ Only his projects
	95	\|Display used storage by project/tool or total\|❌\|✅\|❌\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects\|⚠ Only his projects
1.1	96
	97	= JIRA Project Roles / Permission Scheme =
	98
	99	In JIRA the Project Roles are first added to Security / Project Roles and then they get their Permissions assigned in the SDCloud Permission Scheme which has to associated later with the Jira Projects.
	100
5.1	101	\|=(((
1.1	102	Permission / Role
5.1	103	)))\|=(((
1.1	104	Admin
5.1	105	)))\|=(((
1.1	106	Master
5.1	107	)))\|=(((
1.1	108	Developer
5.1	109	)))\|=(((
1.1	110	Viewer
	111	)))
5.1	112	\|=(% colspan="1" %)(((
1.1	113	Project Permissions
5.1	114	)))\|(% colspan="1" %)(((
1.1	115
5.1	116	)))\|(% colspan="1" %)(((
1.1	117
5.1	118	)))\|(% colspan="1" %)(((
1.1	119
5.1	120	)))\|(% colspan="1" %)(((
1.1	121
	122	)))
	123	\|Administer projects
	124	Enabled Extended project administration\|✅\|❌\|❌\|❌
	125	\|Browse projects\|✅\|✅\|✅\|✅
	126	\|Manage sprints\|✅\|✅\|❌\|❌
	127	\|Service Desk Agent\|✅\|✅\|✅\|❌
	128	\|View development tool\|✅\|✅\|✅\|✅
	129	\|View (read-only) workflow\|✅\|✅\|✅\|✅
5.1	130	\|=Issue Permissions\| \| \| \|
1.1	131	\|Assign issues\|✅\|✅\|✅\|❌
	132	\|Assignable user\|✅\|✅\|✅\|❌
	133	\|Close issues\|✅\|✅\|❌\|❌
	134	\|Create issues\|✅\|✅\|✅\|❌
	135	\|Delete issues\|✅\|❌\|❌\|❌
	136	\|Edit issues\|✅\|✅\|✅\|❌
	137	\|Link issues\|✅\|✅\|✅\|❌
	138	\|Modify reporter\|✅\|✅\|❌\|❌
	139	\|Move issues\|✅\|✅\|❌\|❌
	140	\|Resolve issues\|✅\|✅\|✅\|❌
	141	\|Schedule issues\|✅\|✅\|❌\|❌
	142	\|Set issues security\|✅\|❌\|❌\|❌
	143	\|Transition issues\|✅\|✅\|✅\|❌
5.1	144	\|=(% colspan="1" %)Voters & watchers permissions\|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %)
3.1	145	\|Manage watcher list\|✅\|✅\|❌\|❌
1.1	146	\|View voters and watchers\|✅\|✅\|✅\|❌
5.1	147	\|=(% colspan="1" %)Comments permissions\|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %)
1.1	148	\|Add comments\|✅\|✅\|✅\|❌
	149	\|Delete all comments\|✅\|❌\|❌\|❌
	150	\|Delete own comments\|✅\|✅\|✅\|❌
	151	\|Edit all comments\|✅\|❌\|❌\|❌
	152	\|Edit own comments\|✅\|✅\|✅\|❌
5.1	153	\|=(% colspan="1" %)Attachments permissions\|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %)
1.1	154	\|Create attachments\|✅\|✅\|✅\|❌
	155	\|Delete all attachments\|✅\|❌\|❌\|❌
	156	\|Delete own attachments\|✅\|✅\|✅\|❌
5.1	157	\|=(% colspan="1" %)Time-tracking Permissions\|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %) \|(% colspan="1" %)
1.1	158	\|Work on issues\|✅\|✅\|✅\|❌
	159	\|Delete all worklogs\|✅\|❌\|❌\|❌
	160	\|Delete own worklogs\|✅\|✅\|✅\|❌
	161	\|Edit all worklogs\|✅\|❌\|❌\|❌
	162	\|Edit own worklogs\|✅\|✅\|✅\|❌
	163
	164	* Service Desk Agent is only available if the software was added to JIRA
	165
	166	= Confluence Project Roles =
	167
5.1	168	See vendor documentation for the exact meaning: [[https:~~/~~/confluence.atlassian.com/doc/space-permissions-overview-139521.html>>url:https://confluence.atlassian.com/doc/space-permissions-overview-139521.html]].
1.1	169
5.1	170	\|=(((
1.1	171	Space
5.1	172	)))\|=(% colspan="2" %)(((
1.1	173	All
5.1	174	)))\|=(% colspan="2" %)(((
1.1	175	Pages
5.1	176	)))\|=(% colspan="2" %)(((
1.1	177	Blog
5.1	178	)))\|=(% colspan="2" %)(((
1.1	179	Attachments
5.1	180	)))\|=(% colspan="2" %)(((
1.1	181	Comments
5.1	182	)))\|=(((
1.1	183	Restrictions
5.1	184	)))\|=(((
1.1	185	Mail
5.1	186	)))\|=(% colspan="2" %)(((
1.1	187	Space
	188	)))
	189	\|=(% colspan="1" %)Role/Operation\|(% colspan="1" %)View\|(% colspan="1" %)Delete Own\|(% colspan="1" %)Add\|(% colspan="1" %)Delete\|(% colspan="1" %)Add\|(% colspan="1" %)Delete\|(% colspan="1" %)Add\|(% colspan="1" %)Delete\|(% colspan="1" %)Add\|(% colspan="1" %)Delete\|(% colspan="1" %)Add/Delete\|(% colspan="1" %)Delete\|(% colspan="1" %)Export\|(% colspan="1" %)Admin
	190	\|=Admin\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅\|✅
	191	\|=Master\|✅\|✅\|✅\|❌\|✅\|❌\|✅\|❌\|✅\|✅\|✅\|❌\|✅\|❌
	192	\|=Developer\|✅\|✅\|✅\|❌\|❌\|❌\|✅\|❌\|✅\|❌\|❌\|❌\|❌\|❌
	193	\|=Viewer\|✅\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌\|❌
	194
	195	= Bitbucket Project Roles =
	196
5.1	197	\|=(((
1.1	198
5.1	199	)))\|=(((
	200	Browse
	201	)))\|=(((
	202	Clone / Pull
	203	)))\|=(% colspan="1" %)(((
	204	Create, browse, comment on pull request
	205	)))\|=(% colspan="1" %)(((
	206	Merge pull request
	207	)))\|=(% colspan="1" %)(((
	208	Push
	209	)))\|=(% colspan="1" %)(((
	210	Create repositories
	211	)))\|=(% colspan="1" %)(((
	212	Edit settings / permissions
1.1	213	)))
	214	\|Admin\|✅\|✅\|✅\|✅\|✅\|✅\|✅
4.1	215	\|Master\|✅\|✅\|✅\|✅\|✅\|✅\|❌
1.1	216	\|Developer\|✅\|✅\|✅\|✅\|✅\|❌\|❌
	217	\|Viewer\|✅\|✅\|✅\|❌\|❌\|❌\|❌
	218
	219	//Repository permissions are inherited from project permissions.//
	220
	221	= Jenkins Project Roles =
	222
5.1	223	\|=(% colspan="1" %)(((
1.1	224	Permission
5.1	225	)))\|=(((
1.1	226	Role
5.1	227	)))\|=(((
1.1	228	Admin
5.1	229	)))\|=(((
1.1	230	Master
5.1	231	)))\|=(((
1.1	232	Developer
5.1	233	)))\|=(((
1.1	234	Viewer
5.1	235	)))\|=(% colspan="1" %)(((
1.1	236	Authenticated Users
5.1	237	)))\|=(% colspan="1" %)(((
1.1	238	Anonymous Users
5.1	239	)))\|=(% colspan="1" %)(((
1.1	240	Prometheus Tech User
	241	)))
	242	\|=(% rowspan="5" %)Credentials\|Create\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	243	\|Delete\|✅\|❌\|❌\|❌\|❌\|❌\|❌
	244	\|Manage Domains\|✅\|❌\|❌\|❌\|❌\|❌\|❌
	245	\|Update\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	246	\|View\|✅\|✅\|✅\|❌\|❌\|❌\|❌
	247	\|=(% rowspan="10" %)Job\|Build\|✅\|✅\|✅\|❌\|❌\|❌\|❌
	248	\|Cancel\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	249	\|Configure\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	250	\|Create\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	251	\|Delete\|✅\|❌\|❌\|❌\|❌\|❌\|❌
	252	\|Discover\|✅\|✅\|✅\|✅\|❌\|❌\|❌
	253	\|ExtendedRead\| \| \| \| \| \| \|
	254	\|Move\|✅\|❌\|❌\|❌\|❌\|❌\|❌
	255	\|Read\|✅\|✅\|✅\|✅\|❌\|❌\|❌
2.1	256	\|Workspace\|✅\|✅\|✅\|❌\|❌\|❌\|❌
1.1	257	\|=(% rowspan="3" %)Run\|Delete\|✅\|❌\|❌\|❌\|❌\|❌\|❌
	258	\|Replay\|✅\|✅\|✅\|❌\|❌\|❌\|❌
	259	\|Update\|✅\|✅\|✅\|❌\|❌\|❌\|❌
	260	\|=Job Config History\|DeleteEntry\| \| \| \| \| \| \|
	261	\|=SCM\|Tag\|✅\|✅\|❌\|❌\|❌\|❌\|❌
	262	\|=Metrics\|HealthCheck\| \| \| \| \| \| \|
	263	\| \|ThreadDump\| \| \| \| \| \| \|
	264	\| \|View\| \| \| \| \| \| \|
	265
	266	= GitLab =
	267
	268	Users are assigned to Groups in GitLab with the following roles assignment. Permissions within subordinated Subgroups and GitLab Projects are inherited.
	269
5.1	270	\|=(((
1.1	271	Project Role
	272	)))\|=(((
	273	GitLab Group Members Permission
	274	)))
	275	\|(((
	276	Viewer
	277	)))\|(((
	278	Reporter
	279	)))
	280	\|(((
	281	Developer
	282	)))\|(((
	283	Developer
	284	)))
	285	\|(% colspan="1" %)(((
	286	Master
	287	)))\|(% colspan="1" %)(((
	288	Maintainer
	289	)))
	290	\|(% colspan="1" %)(((
	291	Admin
	292	)))\|(% colspan="1" %)(((
	293	Owner
	294	)))
	295
5.1	296	Regarding permissions for Group Permissions in GitLab, see [[https:~~/~~/docs.gitlab.com/ee/user/permissions.html#group-members-permissions>>url:https://docs.gitlab.com/ee/user/permissions.html#group-members-permissions]].
1.1	297
	298	= Harbor Project Roles =
	299
	300	Harbor manages images through projects. You provide access to these images to users by including the users in projects and assigning one of the following roles to them:
	301
5.1	302	\|=(((
1.1	303	Harbor
	304	)))\|=(((
	305	Portal
	306	)))\|=
	307	\|=Role Name\|=Role Id\|=Project Role
	308	\|Project Admin\|1\|ADMIN
	309	\|Maintainer\|4\|MASTER
	310	\|Developer\|2\|DEVELOPER
	311	\|Guest\|3\|VIEWER
	312
	313	=== Harbor Roles Permissions ===
	314
5.1	315	\|=(((
1.1	316	Action
	317	)))\|=(((
	318	Limited Guest
	319	)))\|=(((
	320	Guest
	321	)))\|=(((
	322	Developer
	323	)))\|=(((
	324	Maintainer
	325	)))\|=(((
	326	Project Admin
	327	)))
	328	\|See the project configurations\|✅\|✅\|✅\|✅\|✅
	329	\|Edit the project configurations\|❌\|❌\|❌\|❌\|✅
	330	\|See a list of project members\| \|✅\|✅\|✅\|✅
	331	\|Create/edit/delete project members\|❌\|❌\|❌\|❌\|✅
	332	\|See a list of project logs\|✅\|✅\|✅\|✅\|❌
	333	\|See a list of project replications\|❌\|❌\|❌\|✅\|✅
	334	\|See a list of project replication jobs\|❌\|❌\|❌\|❌\|✅
	335	\|See a list of project labels\|❌\|❌\|❌\|✅\|✅
	336	\|Create/edit/delete project labels\|❌\|❌\|❌\|✅\|✅
	337	\|See a list of repositories\|✅\|✅\|✅\|✅\|✅
	338	\|Create repositories\|❌\|❌\|✅\|✅\|✅
	339	\|Edit/delete repositories\|❌\|❌\|❌\|✅\|✅
	340	\|See a list of images\|✅\|✅\|✅\|✅\|✅
	341	\|Retag image\|❌\|✅\|✅\|✅\|✅
	342	\|Pull image\|✅\|✅\|✅\|✅\|✅
	343	\|Push image\|❌\|❌\|✅\|✅\|✅
	344	\|Scan/delete image\|❌\|❌\|❌\|✅\|✅
	345	\|Add scanners to Harbor *\|❌\|❌\|❌\|❌\|❌
	346	\|Edit scanners in projects\|❌\|❌\|❌\|❌\|✅
	347	\|See a list of image vulnerabilities\|✅\|✅\|✅\|✅\|✅
	348	\|Create list of project vulnerabilities\|❌\|❌\|✅\|✅\|✅
	349	\|Read list of project vulnerabilities\|❌\|❌\|✅\|✅\|✅
	350	\|Export list of project vulnerabilities\|❌\|❌\|✅\|✅\|✅
	351	\|See image build history\|✅\|✅\|✅\|✅\|✅
	352	\|Add/Remove labels of image\|❌\|❌\|✅\|✅\|✅
	353	\|See a list of helm charts\|✅\|✅\|✅\|✅\|✅
	354	\|Download helm charts\|✅\|✅\|✅\|✅\|✅
	355	\|Upload helm charts\|❌\|❌\|✅\|✅\|✅
	356	\|Delete helm charts\|❌\|❌\|❌\|✅\|✅
	357	\|See a list of helm chart versions\|✅\|✅\|✅\|✅\|✅
	358	\|Download helm chart versions\|✅\|✅\|✅\|✅\|✅
	359	\|Upload helm chart versions\|❌\|❌\|✅\|✅\|✅
	360	\|Delete helm chart versions\|❌\|❌\|❌\|✅\|✅
	361	\|Add/Remove labels of helm chart version\|❌\|❌\|✅\|✅\|✅
	362	\|See a list of project robots\|❌\|❌\|❌\|✅\|✅
	363	\|Create/edit/delete project robots\|❌\|❌\|❌\|❌\|✅
	364	\|See configured CVE allowlist\|✅\|✅\|✅\|✅\|✅
	365	\|Create/edit/remove CVE allowlist\|❌\|❌\|❌\|❌\|✅
	366	\|View webhook events\|❌\|❌\|❌\|✅\|✅
	367	\|Add new webhook events\|❌\|❌\|❌\|❌\|✅
	368	\|Enable/deactivate webhooks\|❌\|❌\|❌\|❌\|✅
	369	\|Create/delete tag retention rules\|❌\|❌\|✅\|✅\|✅
	370	\|Enable/deactivate tag retention rules\|❌\|❌\|✅\|✅\|✅
	371	\|Create/delete tag immutability rules\|❌\|❌\|❌\|✅\|✅
	372	\|Enable/deactivate tag immutability rules\|❌\|❌\|❌\|✅\|✅
	373	\|See project quotas\|✅\|✅\|✅\|✅\|✅
	374	\|Edit project quotas *\|❌\|❌\|❌\|❌\|❌
	375	\|Delete Project\|❌\|❌\|❌\|❌\|✅
	376
	377	~* Only the Harbor system administrator can edit project quotas and add new scanners.
	378
	379	= Gitea =
	380
	381	Please note, that some terms used in DevOps-as-a-Service have different names in Gitea. Please check the following table to avoid any confusion.
	382
5.1	383	\|=(((
1.1	384	DevOps Portal
	385	)))\|=(((
	386	Gitea
	387	)))
	388	\|(((
	389	Project
	390	)))\|(((
	391	Organization
	392	)))
	393	\|(((
	394	Project Role
	395	)))\|(((
	396	Team
	397	)))
	398	\|(((
	399	Git Repository
	400	)))\|(((
	401	Repository
	402	)))
	403	\|(((
	404	Artifact Repository
	405	)))\|(((
	406	Package
	407	)))
	408	\|(((
	409	Issue Tracking
	410	)))\|(((
	411	Project (currently disabled)
	412	)))
	413
	414	The Owner team has full admin permission in the Organization. This is a technical user used by the DevOps Portal for auto-provisioning.
	415
5.1	416	\|=(((
1.1	417	Gitea Role
	418	)))\|=(((
	419	Portal Project Role
	420	)))\|=Permissions
	421	\|(((
	422	Viewer
	423	)))\|Viewer\|Read
	424	\|(((
	425	Developer
	426	)))\|(((
	427	Developer
	428	)))\|Read, Write
	429	\|(% colspan="1" %)(((
	430	Master
	431	)))\|(% colspan="1" %)Master\|Read, Write
	432	\|(% colspan="1" %)Admin\|(% colspan="1" %)Admin\|Read, Write, Repository create
	433
	434	= Nexus Project Roles =
	435
	436	For each role in a project a role in Nexus is created which includes one Privilege for each repository in the project.
	437
5.1	438	\|=(((
1.1	439	Role
5.1	440	)))\|=(((
1.1	441	Admin
5.1	442	)))\|=(((
1.1	443	Master
5.1	444	)))\|=(((
1.1	445	Developer
5.1	446	)))\|=(((
1.1	447	Viewer
	448	)))
5.1	449	\|(((
1.1	450	ID
5.1	451	)))\|(((
1.1	452	PROJECTKEY-admin
5.1	453	)))\|(((
1.1	454	PROJECTKEY-master
5.1	455	)))\|(((
1.1	456	PROJECTKEY-developer
5.1	457	)))\|(((
1.1	458	PROJECTKEY-viewer
	459	)))
5.1	460	\|(((
1.1	461	Name
5.1	462	)))\|(((
1.1	463	PROJECTKEY-admin
5.1	464	)))\|(((
1.1	465	PROJECTKEY-master
5.1	466	)))\|(((
1.1	467	PROJECTKEY-developer
5.1	468	)))\|(((
1.1	469	PROJECTKEY-viewer
	470	)))
5.1	471	\|(((
1.1	472	Privilege
5.1	473	)))\|(((
1.1	474	PROJECTKEY-docker-admin
	475
	476	PROJECTKEY-maven-admin
	477
	478	PROJECTKEY-//repotype//-admin
5.1	479	)))\|(((
1.1	480	PROJECTKEY-docker-master
	481
	482	PROJECTKEY-maven-master
	483
	484	PROJECTKEY-//repotype//-master
5.1	485	)))\|(((
1.1	486	PROJECTKEY-docker-developer
	487
	488	PROJECTKEY-maven-developer
	489
	490	PROJECTKEY-//repotype//-developer
5.1	491	)))\|(((
1.1	492	PROJECTKEY-docker-viewer
	493
	494	PROJECTKEY-maven-viewer
	495
	496	PROJECTKEY-//repotype//-viewer
	497	)))
	498
	499	For each role in a project a Privilege of type Repository Content Selector is created which combines Content Selector (Project), Repository (Docker Registry) and Actions depending on the role.
	500
5.1	501	\|=(((
1.1	502	Privilege / Role
5.1	503	)))\|=(((
1.1	504	Admin
5.1	505	)))\|=(((
1.1	506	Master
5.1	507	)))\|=(((
1.1	508	Developer
5.1	509	)))\|=(((
1.1	510	Viewer
	511	)))
5.1	512	\|(((
1.1	513	Name
5.1	514	)))\|(((
1.1	515	PROJECTKEY-docker-admin
5.1	516	)))\|(((
1.1	517	PROJECTKEY-docker-master
5.1	518	)))\|(((
1.1	519	PROJECTKEY-docker-developer
5.1	520	)))\|(((
1.1	521	PROJECTKEY-docker-viewer
	522	)))
5.1	523	\|(((
1.1	524	Content Selector
5.1	525	)))\|(((
1.1	526	PROJECTKEY-docker
5.1	527	)))\|(((
1.1	528	PROJECTKEY-docker
5.1	529	)))\|(((
1.1	530	PROJECTKEY-docker
5.1	531	)))\|(((
1.1	532	PROJECTKEY-docker
	533	)))
5.1	534	\|(((
1.1	535	Repository
5.1	536	)))\|(((
1.1	537	docker-registry
5.1	538	)))\|(((
1.1	539	docker-registry
5.1	540	)))\|(((
1.1	541	docker-registry
5.1	542	)))\|(((
1.1	543	docker-registry
	544	)))
5.1	545	\|(((
1.1	546	Actions
5.1	547	)))\|(((
1.1	548	delete, add, edit, browse, read
5.1	549	)))\|(((
1.1	550	add, edit, browse, read
5.1	551	)))\|(((
1.1	552	add, edit, browse, read
5.1	553	)))\|(((
1.1	554	browse, read
	555	)))
	556
5.1	557	See [[https:~~/~~/help.sonatype.com/repomanager3/security/privileges>>url:https://help.sonatype.com/repomanager3/nexus-repository-administration/access-control/privileges]] for available Actions.

Wiki source code of Users and roles

DevOps-as-a-Service