Roles for the Add-ons feature
You can map the roles for accessing the Add-ons application to claims forwarded from an external identity provider.
Roles
The Add-ons application accessible by users holding one of the following roles:
| Role | Description | Role name |
|---|---|---|
| Administrator role | A user with this role can perform all available operations on Add-ons, Add-on custom configurations and Extensions. | Tridion.AddonService.Administrator |
| Service role | This role is used by the Content Manager and Content Delivery services to connect to the Add-ons Service RWS's own Windows services. A user with this role can perform some, but not all, of the operations that Administrator can perform. | Tridion.AddonService.Service |
| Read-only role | A user with this role can see Add-ons and Extensions, but cannot change or delete any of them. | Tridion.AddonService.ReadOnly |
Add-on operations and roles
The following table shows which role can perform which Add-on operation:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Get a list of Add-ons | yes | yes | yes |
| Upload a new Add-on package | yes | no | no |
| Update an existing Add-on package | yes | no | no |
| Get the metadata of an Add-on | yes | yes | yes |
| Update the status of an Add-on | yes | yes | no |
| Delete an Add-on | yes | no | no |
| Download an Add-on | yes | yes | no |
Configuration operations and roles
The following table shows which role can perform which operation related to custom configurations for Add-ons:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Upload a new custom configuration for an Add-on | yes | no | no |
| Update an existing custom configuration for an Add-on | yes | no | no |
| Delete a custom configuration for an Add-on | yes | no | no |
| Download a custom configuration for an Add-on | yes | yes | no |
Extension operations and roles
The following table shows which role can perform which operation related to Extensions contained within Add-ons:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Update the status of an Extension | yes | yes | no |