Roles for the Add-ons feature
You can map the roles for accessing the Add-ons application to claims forwarded from an external identity provider.
Roles
The Add-ons application accessible by users holding one of the following roles:
| Role | Description | Role name |
|---|---|---|
| Administrator | A user with this role can perform all available operations on Add-ons, Add-on custom configurations and Extensions. | Tridion.AddonService.Administrator |
| Service | This role is used by the Content Manager and Content Delivery services to connect to the Add-ons Service. A user with this role can perform some, but not all, of the operations that | Tridion.AddonService.Service |
| Read-only | A user with this role can see Add-ons and Extensions, but cannot change or delete any of them. | Tridion.AddonService.ReadOnly |
Add-on operations and roles
The following table shows which role can perform which Add-on operation:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Get a list of Add-ons | |||
| Upload a new Add-on package | |||
| Update an existing Add-on package | |||
| Get the metadata of an Add-on | |||
| Update the status of an Add-on | |||
| Delete an Add-on | |||
| Download an Add-on |
Configuration operations and roles
The following table shows which role can perform which operation related to custom configurations for Add-ons:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Upload a new custom configuration for an Add-on | |||
| Update an existing custom configuration for an Add-on | |||
| Delete a custom configuration for an Add-on | |||
| Download a custom configuration for an Add-on |
Extension operations and roles
The following table shows which role can perform which operation related to Extensions contained within Add-ons:
| Operation | Administrator role | Service role | Read-only role |
|---|---|---|---|
| Update the status of an Extension |