Roles
SelectUser Management > Roles.
A role is a group of one or moreUsers.
For more information about users and roles inFME Flow, seeRole-Based and User-Based Access Control.
The default columns displayed in the Roles table are:
- Name- Name of the role.
- Users- User accounts assigned to the role.
FME Flowprovides a set of default roles:
Role | Description | User |
---|---|---|
fmeadmin |
Provides full access toFME Flow, including the Web User Interface. |
admin |
fmeauthor |
Providesworkspaceauthors access toFME Flowto publish, author, and test newworkspaces. |
author |
fmeguest |
Provides unauthenticated access to run jobs via Web Service URLs. |
guest |
fmesuperuser | Authorized to access all resources ofFME Flow, including existing and newly-created resources. | admin |
fmeuser | Provides users access to the Web User Interface and Web Services. | user |
Adding and Removing Roles
To add a role, clickNew. Alternatively, select an existing role and clickDuplicate. A dialog displays to add a new role. This dialog is similar to Configuring an Existing Role, below.
To remove a role, select it and clickRemove.
Configuring an Existing Role
To configure an existing user role, click an entry in the Roles table. The Edit Role page opens. Configure the following settings, and clickOKto save your changes.
Associated Users
To assign users to the role, click inside the field and select a user in the drop-down. To remove users from the role, click the "x" beside the user name.
Permissions
You can give a role access to different functions inFME Flow. Check the box beside a function to grant access.
Optionally, you can add permissions to match those from an existing role. ClickLoad Template. On the Load Template from Role dialog, select the role from which to load permissions, and clickOK. This option adds any additional permissions that are not already granted. No permissions are removed. You can clickLoad Templatemultiple times to add permissions from more roles.
There are two levels of permissions:
- General: Allows users of the role to view the corresponding navigation link in the Web User Interface, along with select management functions, depending on the category. For example, ifAccessis checked besideRepositories, users can access the Repositories page. Additionally, ifCreateis checked, users can create repositories on the Repositories page.
- Item: Allows users of the role specific permissions on items within functional categories. To view items, click the drop-down icon of a category (v). For example, when you expand the Repositories category, you see the individual repositories on yourFME Flow, along with the permissions that can be granted for each one.
The following is a detailed explanation of general- and item-level (where applicable) permissions for each category:
- Access: Access theAutomationspage, and list workflows and tags.
- Create: Create workflows.
- Read: View a workflow and its log file.
- Write: Edit or remove a workflow.
- Run: Start and stop a workflow.
- Apps: Run a workflow through anautomation app.
- Webhooks: Access a URL generated by aWebhooktrigger that requires authentication.
Individual Automations:
Manage: Access and manageBroadcast Messages.
- Access: Access theDatabase ConnectionsandWeb Connectionspages.
- Create: Create connections.
- Manage: Access, create, and remove connections.
- Access: Manage web services.
Individual Connections:
- Access: Access theDashboardspage.
- Access: Access theJobspage to view the jobs you have run, or cancel any of your jobs that are currently running or in queue.
- Manage: Access and manage the jobs of all users. You can:
- Cancel any job that is currently running.
- Remove the history of jobs that were previously run.
- Manage:Licensing,Engines, andDeployment Status.
- Manage: AccessNetwork & Emailconfigurations, except Services.
- Upload: Allow publishing FME packages fromFME FormtoFME Flow.
- Access: Access theProjectspage.
- Create: Create projects.
- Read: View information about a project.
- Write: Edit a project.
- Delete: Delete a project, or delete items from a project.
Individual Projects:
- Access: Access thePublicationspage.
- Create: Create Notification Service Publications.
- Read: View information about a publication.
- Write: Edit a publication.
- Remove: Delete a publication.
Individual Publications:
- Manage: Access toQueue Control,除了引擎分配规则(也需要马nage permission in Licensing & Engines).
- Access: Access theWorkspacespage.
- Create: Create repositories.
- Download: Downloadworkspaces and other repository items fromFME FlowintoFME Workbench.
- Read: View repository information.
- Publish: Publishworkspaces and other items to the repository fromFME Workbench.
- Run: Run repositoryworkspaces fromFME Flow.
- Remove:删除一个存储库,或删除项目回购sitory.
Individual Repositories:
- Access: Access theResourcespage.
- Create: Create connections to network resources.
- Access: Read and download a file.
- List: List the folders and files of a resource.
- Write: Write to files.
- Upload: Upload files.
- Remove: Delete files.
Individual Resource connections (top-level folders):
- Access: Access theRunWorkspacepage.
- Advanced: AccessJob Directiveswhen runningworkspaces.
- Access: Access theSchedulespage.
- Create: Create schedules.
- Full Access: Edit or delete a schedule.
Individual Schedules:
- Manage: Access toSecurityconfigurations.
- Access: Access theAutomation Appspage.
- Create: Create new automation apps.
- Run: Run an automation app.
- Read: Access an automation app.
- Write: Edit or remove an automation app.
Individual Automation Apps:
- Access: Access theGallery Appspage.
- Create: Create new gallery apps.
- Run: Open links in a gallery app.
- Read: Access a gallery app.
- Write: Edit or remove a gallery app.
Individual Gallery Apps:
- Access: Access theWorkspace Appspage.
- Create: Create newworkspaceapps.
- Run: Run aworkspaceapp.
- Read: Access aworkspaceapp.
- Write: Edit or remove aworkspaceapp.
IndividualWorkspaceApps:
- Manage: Configure theFME Flowservices.
- Full Access: ManageFME Flowservices.
Individual Services:
- Access: Access theStreamspage.
- Create: Create streams.
- Read: View a stream.
- Write: Edit or remove a stream.
Individual Streams:
- Access: Access theSubscriptionspage.
- Create: Create Notification Service Subscriptions.
- Read: View information about a subscription.
- Write: Edit a subscription.
- Remove: Delete a subscription.
Individual Subscriptions:
- Manage: Configuresystem cleanup.
- Manage: ConfigureSystem Events.
- Access: Access theTopicspage.
- Create: Create topics.
- Read: View information about a topic.
- Write: Edit a topic.
- Publish: Publish notifications to a topic.
- Remove: Delete a topic.
Individual Topics:
- Manage: Configureusers and roles.
- Access: Commit versions andview repository history.
- Manage: Enable version control and configure with a remote Git repository.