access_tokens:manage | Access to create, view, update, and delete org-wide access tokens. | Manage access tokens |
access_tokens:read | Access to view org-wide access tokens. Can only view token metadata, not token values. | Manage access tokens |
agents:manage | Deploy and manage On-Premise Agents used to execute organization code. | About On-Premise Agent |
agents:read | View On-Premise Agents registered to execute organization code. | About On-Premise Agent |
folders:manage | Access to create, update, and delete folders users see on the Superblocks home page. | |
groups:manage | Access to create, view, update, and delete organization groups. | Managing user groups |
groups:read | Access to view organization groups. | Managing user groups |
groups.members:manage | Access to add and remove members from user groups. | Manage group members |
groups.members:read | Access to see which users are members of a group. | Managing user groups |
logs:read | Access logs for the organization. Logs many contain agent, profile, repository, or user information not otherwise accessible by viewer. | About Logs |
logs.streams:manage | Access to add, update, and remove Observability integrations used to stream logs to 3rd party monitoring platforms. | Streaming Logs to Observability vendor |
logs.streams:read | Access to view Observability integrations configured for the organization. | Streaming Logs to Observability vendor |
org:manage | Access to fully manage the organization, including the org's name, domains, plan, etc. | |
org:read | Read-only access to organization settings like org name, domains, etc. | |
org.users:manage | Access to invite members to the organization, manage invites, and deactivate/reactivate member accounts. | Managing members |
org.users:read | Access to view who is a member of the organization. | Managing members |
profiles:manage | Access to create, view, update, and delete data profiles for the organization. | About Profiles |
profiles:read | Access to view the organization's data profiles. | About Profiles |
repos:manage | Access to create, view, update, and delete connection git repositories. | Set up repositories |
repos:read | Access to view connection git repositories. | Set up repositories |
roles:manage | Access to create, view, update, and delete custom organization and resource roles. This permission does not let users assign custom roles. | Manage roles & permissions |
roles:read | Access to view organization and resource roles. | Manage roles & permissions |
secrets_stores:manage | Access to create and manage organization secret stores. | Using secret managers |