Login
      Contents x
      SourceBuild permissions management
        • Print
        • PDF
        Contents

        SourceBuild permissions management

          • Print
          • PDF
          Article summary

          Available in Classic and VPC

          You may set various access permissions for SourceBuild using Sub Account, which is an account management service provided by NAVER Cloud Platform. Sub Account provides System Managed policies and user-defined policies for setting management and administration permissions.

          Note

          Sub Account is a service provided free of charge upon subscribing. For more information on Sub Account, see Services > Management & Governance > Sub Account on the NAVER Cloud Platform portal and the Sub Account user guide.

          System-managed policies

          System-managed policies are role-based policies defined by NAVER Cloud Platform for user convenience. Once the system-managed policies are granted to a sub account created in Sub Account, that sub account can use SourceBuild. The following is a brief description of the system-managed policies of SourceBuild.

          Policy namePolicy description
          NCP_ADMINISTRATORPermission to access the portal and console in NAVER Cloud Platform in the same manner as main accounts
          NCP_INFRA_MANAGERPermission to use all services in NAVER Cloud Platform and access My Page > Manage notifications in the portal
          NCP_SOURCEBUILD_MANAGERPermission to use the full SourceBuild feature sets
          NCP_SOURCEBUILD_VIEWERPermission to only use the View list and Search features in SourceBuild
          NCP_SOURCEBUILD_ADMINADMIN permissions template managed in SourceBuild. Permission to create the ADMIN permissions policy managed in SourceBuild through the Load policy feature
          NCP_SOURCEBUILD_USERUSER permissions template managed in SourceBuild. Permission to create the USER permissions policy managed in SourceBuild through the Load policy feature

          User-defined policies

          User-defined policies are policies that users may create. Once the user-defined policies are granted to a sub account created in Sub Account, that sub account can only use the user-assigned action combinations. The following is a brief description of the user-defined policies of SourceBuild.

          TypeAction nameRelated actionResource typeGroup by resource typeAction description
          ViewView/getProjectList--SourceBuildView project list
          ViewView/getProjectDetailView/getProjectList
          View/downloadArtifact          		ProjectSourceBuildView project details
          ViewView/getHistoryListView/getProjectList
          View/getProjectDetail
          View/downloadArtifact          		ProjectSourceBuildView build task result list
          ViewView/downloadArtifactView/getProjectList
          View/getProjectDetail          		ProjectSourceBuildDownload build result
          ViewView/getRepositoryList-ProjectSourceCommitView SourceCommmit repository list
          ViewView/getRepositoryDetailView/getRepositoryListSourceCommit:RepositorySourceCommitView SourceCommmit repository details
          ViewView/getBucketList-SourceCommit:RepositoryObject StorageView Object Storage bucket list
          ViewView/getBucketDetailView/getBucketListObjectStorage:BucketObject StorageSelect Object Storage bucket to save build result
          ViewView/getRegistryList-ObjectStorage:BucketContainer RegistryView Container Registry list
          ViewView/getRegistryDetailView/getRegistryListContainerRegistry:RegistryContainer RegistryView Container Registry details
          ViewView/accessFileSafer-ContainerRegistry:RegistryFile SaferConnect to File Safer
          ViewView/accessCloudLogAnalytics-ContainerRegistry:RegistryCloud Log AnalyticsCloud Log Analytics integration
          ViewView/getNotificationList-ProjectSourceBuildView notification recipient list
          ViewView/getSourceBandOrganizationList--SourceBandView SourceBand Organization List
          ViewView/getSourceBandOrganizationDetailView/getSourceBandOrganizationListSourceBand:OrganizationSourceBandView SourceBand Organization details
          ViewView/getSourceBandProjectListView/getSourceBandOrganizationList
          View/getSourceBandOrganizationDetail          		-SourceBandView SourceBand project list
          ViewView/getSourceBandProjectDetailView/getSourceBandOrganizationList
          View/getSourceBandOrganizationDetail
          View/getSourceBandProjectList          		SourceBand:ProjectSourceBandView SourceBand project details
          ChangeChange/createProjectView/getProjectList
          View/getRepositoryList
          View/getRepositoryDetail
          View/getBucketList
          View/getBucketDetail
          View/getRegistryList
          View/getRegistryDetail
          View/accessFileSafer
          View/accessCloudLogAnalytics
          View/getNotificationList          		ContainerRegistry:RegistrySourceBuildCreate project
          ChangeChange/changeProjectView/getProjectList
          View/getProjectDetail
          View/downloadArtifact
          View/getRepositoryList
          View/getRepositoryDetail
          View/getBucketList
          View/getBucketDetail
          View/getRegistryList
          View/getRegistryDetail
          View/accessFileSafer
          View/accessCloudLogAnalytics
          View/getNotificationList          		ProjectSourceBuildChange project settings
          ChangeChange/deleteProjectView/getProjectList
          View/getProjectDetail
          View/downloadArtifact          		ProjectSourceBuildDelete project
          ChangeChange/doBuildView/getProjectList
          View/getProjectDetail
          View/downloadArtifact
          View/getRepositoryList
          View/getHistoryList
          View/getRepositoryDetail
          View/getBucketList
          View/getBucketDetail
          View/getRegistryList
          View/getRegistryDetail          		ProjectSourceBuildExecute/cancel project (build)
          Caution

          Even when you are granted permission for a specific action, if you are not also granted permissions for the related actions that are required, you will not be able to perform tasks properly. To prevent such issues, Sub Account provides a feature that automatically grants permissions for related actions when granting action permissions. However, if you deselect related actions that are automatically granted, then the system determines that it was done intentionally by the main account user and won't forcibly include them. So, be careful when setting permissions.

          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout