Skip to content

Container Management Permission Description

The container management module uses the following roles:

Note

The permissions granted to each role are as follows:

Primary Function Secondary Function Permission Cluster Admin Ns Admin Ns Editor NS Viewer
Cluster Cluster List View Cluster List
Access Cluster
Create Cluster
Cluster Operations Enter Console ✔ (only in the list)
View Monitoring
Edit Basic Configuration
Download kubeconfig ✔ (with ns permission) ✔ (with ns permission) ✔ (with ns permission)
Disconnect Cluster
View Logs
Retry
Uninstall Cluster
Cluster Overview View Cluster Overview
Node Management Access Node
View Node List
View Node Details
View YAML
Pause Scheduling
Modify Labels
Modify Annotations
Modify Taints
Remove Node
Stateless Workload View List
View/Manage Details ✔ (view only)
Create by YAML
Create by image
Select an instance in ws bound to ns Select image
View IP Pool
Edit Network Interface
Enter Console
View Monitoring
View Logs
Load Balancer Scaling
Edit YAML
Update
Status - Pause Upgrade
Status - Stop
Status - Restart
Delete
Stateful Workload View List
View/Manage Details ✔ (view only)
Create by YAML
Create by image
Select an instance in ws bound to ns Select image
Enter Console
View Monitoring
View Logs
Load Balancer Scaling
Edit YAML
Update
Status - Stop
Status - Restart
Delete
守护进程 View list
View/Manage details ✓ (Only view)
Create by YAML
Create by image
Select an instance in ws bound to ns Select image
Go to console
Check monitor
View logs
Edit YAML
Update
Status - restart
Delete
Job View list
View/Manage details ✓ (Only view)
Create by YAML
Create by image
Instance list
Select an instance in ws bound to ns Select image
Go to console
View logs
View YAML
Restart
View event
Delete
CronJob View list
View/Manage details ✓ (Only view)
Create by YAML
Create by image
Select an instance in ws bound to ns Select image
Edit YAML
Stop
View jobs
View event
Delete
Pod View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
View YAML
Upload file
Download file
View containers
View event
Delete
ReplicaSet View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
View YAML
Delete
Helm app View list
View/Manage details ✓ (Only view)
Update
View YAML
Delete
Helm chart View list
View details
Install chart ✓ (Fine for ns level)
Download chart ✓ (Consistent with viewing interface)
Helm repo View list
Create repo
Update repo
Clone repo
Refresh repo
Modify label
Modify annotation
Delete
Service View list
View/Manage details ✓ (Only view)
Create by YAML
Create
Update
View event
Edit YAML
Delete
Ingress View list
View/Manage details ✓ (Only view)
Create by YAML
Create
Update
View event
Edit YAML
Delete
Network policy View list
View/Manage details
Create by YAML
Create
Delete
Network config Config
CRD View list
View/Manage details
Create by YAML
Edit YAML
Delete
PVC View list
View/Manage details ✓ (Only view)
Create
Select sc
Create by YAML
Edit YAML
Clone
Delete
PV View list
View/Manage details
Create by YAML
Create
Edit YAML
Update
Clone
Modify label
Modify annotation
Delete
SC View list
Create by YAML
Create
View YAML
Update
Authorize NS
Deauthorize
Delete
ConfigMap View list
View/Manage details ✓ (Only view)
Create by YAML
Create
Edit YAML
Update
Export ConfigMap
Delete
Secret View list
View/Manage details
Create by YAML
Create
Edit YAML
Update
Export secret
Delete
Namespace View list
View/Manage details ✓ (Only view)
Create by YAML
Create
View YAML
Modify label
Unbind WS
Bind WS
Quotas
Delete
Cluster operation View list
View YAML
View logs
Delete
Helm operation Set preserved entries
View YAML
View logs
Delete
Cluster upgrade View details
Upgrade
Cluster settings Addon config
Advanced config
Namespace View list
Create
View/Manage details
View YAML
Modify label
Bind WS
Quotas
Delete
Workload Deployment View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
Workload scaling
Edit YAML
Update
Status - Pause Upgrade
Status - Stop
Status - restart
Revert
Modify label and annotation
Delete
StatefulSet View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
Workload scaling
Edit YAML
Update
Status - Stop
Status - restart
Delete
DaemonSet View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
Edit YAML
Update
Status - restart
Delete
Job View list
View/Manage details ✓ (Only view)
Go to console
View logs
View YAML
Restart
View event
Delete
CronJob View list
View/Manage details ✓ (Only view)
View event
Delete
Pod View list
View/Manage details ✓ (Only view)
Go to console
Check monitor
View logs
View YAML
Upload file
Download file
View containers
View event
Delete
Backup and Restore App backup View list
View/Manage details
Create backup schedule
View YAML
Update Schedule
Pause
Run now
Delete
Resume backup View list
View/Manage details
Resume backup
Delete
Backup point View list
Delete
Object storage View list
etcd backup View backup policies
Create backup policies
View logs
View YAML
Update backup policy
Stop/Start
Run now
View/Manage details
Delete backup records
View backup points
Cluster inspection Cluster inspection View list
View/Manage details
Cluster inspection
Settings
Permissions Permissions View list
Grant to cluster admin
Delete
NS permissions View list
Grant to ns admin
Grant to ns edit
Grant to ns view
Edit permissions
Delete
Security Compliance scanning View scanning report
View scanning report details
Download scanning report
Delete scanning report
View scanning policies
Create scanning policy
Delete scanning policy
View scanning config list
View scanning config details
Delete scanning config
Scan permission View scanning reports
View scanning report details
Delete scanning report
View scanning policies
Create scanning policy
Delete scanning policy
Scan vulnerability View scanning reports
View scanning report detail
Delete scanning report
View scanning policies
Create scanning policy
Delete scanning policy

Comments