Managing SourceBuild permissions
    • PDF

    Managing SourceBuild permissions

    • PDF

    Article Summary

    Available in Classic and VPC

    You may set various access permissions for SourceBuild using Sub Account, which is an account management service provided by NAVER Cloud Platform. Sub Account provides the system-managed and user-created policies for setting management and administration permissions.

    Note

    Sub Account is a service provided free of charge upon subscription request. For more information on Sub Account, see Services > Management & Governance > Sub Account of NAVER Cloud Platform portal and the Sub Account user guide.

    System-managed policies

    System-managed policies are role-based policies defined by NAVER Cloud Platform for user convenience. Once the system-managed policies are granted to a sub account created in Sub Account, that sub account can use SourceBuild. The following is a brief description of the System Managed policies of SourceBuild.

    Policy namePolicy description
    NCP_ADMINISTRATORPermission to access the portal and console in NAVER Cloud Platform in the same manner as main accounts
    NCP_INFRA_MANAGERPermission to use all services in NAVER Cloud Platform and access My Page > Manage notifications in the portal
    NCP_SOURCEBUILD_MANAGERPermission to use all the features in SourceBuild
    NCP_SOURCEBUILD_VIEWERPermission to only use the View list and Search features in SourceBuild
    NCP_SOURCEBUILD_ADMINUser permissions template managed in SourceBuild. Permission to create the ADMIN permissions policy managed in SourceCommit through the Load policy feature
    NCP_SOURCEBUILD_USERUser permissions template managed in SourceBuild. Permission to create the USER permissions policy managed in SourceCommit through the Load policy feature

    User-created policies

    User-created policies are policies that users may create. Once the user-created policies are granted to a sub account created in Sub Account, that sub account can only use the user-assigned action combinations. The following is a brief description of the user-created policies of SourceBuild.

    TypeAction nameRelated actionResource typeGroup by resource typeAction description
    ViewView/getProjectList--SourceBuildView project list
    ViewView/getProjectDetailView/getProjectList
    View/downloadArtifact
    ProjectSourceBuildView project details
    ViewView/getHistoryListView/getProjectList
    View/getProjectDetail
    View/downloadArtifact
    ProjectSourceBuildView build task result list
    ViewView/downloadArtifactView/getProjectList
    View/getProjectDetail
    ProjectSourceBuildDownload build result
    ViewView/getRepositoryListView/getProjectList
    View/getProjectDetail
    ProjectSourceCommitView SourceCommmit repository list
    ViewView/getRepositoryDetailView/getRepositoryListSourceCommit:RepositorySourceCommitView SourceCommmit repository details
    ViewView/getBucketListView/getRepositoryListSourceCommit:RepositoryObject StorageView Object Storage bucket list
    ViewView/getBucketDetailView/getBucketListObjectStorage:BucketObject StorageSelect Object Storage bucket to save build result
    ViewView/getRegistryListView/getBucketListObjectStorage:BucketContainer RegistryView Container Registry list
    ViewView/getRegistryDetailView/getRegistryListContainerRegistry:RegistryContainer RegistryView Container Registry details
    ViewView/accessFileSaferView/getRegistryListContainerRegistry:RegistryFile SaferConnect to File Safer
    ViewView/accessCloudLogAnalyticsView/getRegistryListContainerRegistry:RegistryCloud Log AnalyticsCloud Log Analytics integration
    ViewView/getNotificationList-ProjectSourceBuildView notification recipient list
    ViewView/getSourceBandOrganizationList--SourceBandView SourceBand organization list
    ViewView/getSourceBandOrganizationDetailView/getSourceBandOrganizationListSourceBand:OrganizationSourceBandView SourceBand organization details
    ViewView/getSourceBandProjectListView/getSourceBandOrganizationDetail-SourceBandView SourceBand project list
    ViewView/getSourceBandProjectDetailView/getSourceBandProjectListSourceBand:ProjectSourceBandView SourceBand project details
    ChangeChange/createProjectView/getProjectList
    View/getRepositoryList
    View/getRepositoryDetail
    View/getBucketList
    View/getBucketDetail
    View/getRegistryList
    View/getRegistryDetail
    View/accessFileSafer
    View/accessCloudLogAnalytics
    ContainerRegistry:RegistrySourceBuildCreate project
    ChangeChange/changeProjectView/getProjectList
    View/getProjectDetail
    View/getRepositoryList
    View/getRepositoryDetail
    View/getBucketList
    View/getBucketDetail
    View/getRegistryList
    View/getRegistryDetail
    View/accessFileSafer
    View/accessCloudLogAnalytics
    ProjectSourceBuildChange project settings
    ChangeChange/deleteProjectView/getProjectList
    View/getProjectDetail
    ProjectSourceBuildDelete project
    ChangeChange/doBuildView/getProjectList
    View/getProjectDetail
    View/getHistoryList
    View/getRepositoryDetail
    View/getBucketList
    View/getBucketDetail
    View/getRegistryList
    View/getRegistryDetail
    ProjectSourceBuildExecute/cancel project (build)
    Caution

    Even when you are granted a permission for a specific action, you won't be able to perform the task properly unless you are also granted a permission for the related actions that are required. To prevent such issues, Sub Account provides a feature that automatically grants permissions for related actions when granting action permissions. However, if you deselect related actions that are automatically granted, then the system will not forcibly include them since it regards such de-selection done intentionally by the main account user. Thus, caution is advised when setting permissions.


    Was this article helpful?

    Changing your password will log you out immediately. Use the new password to log back in.
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.