hydden.docs

#

Hydden has the following default roles:

• Owner: Grants full access to manage all resources, including the ability to assign roles.
• Reader: View all resources, but does not allow you to make any changes.
• Administrator: View and edit all resources, but does not allow you to erase data.
• Packager Client: View all resources, but does not allow you to make any changes.

More roles will be added as use cases come up and further tuning of access might be needed.

Owner

Owners are the tenant administrators. Owners have full access to manage all resources, including the ability to assign roles. They have CRUD permissions on all data in their tenant.

Creating Roles

Owners can use + Add Role on the Roles pages to add more roles for their tenant.

1. Navigate to Access

   Roles.

2. Click + Add Role.
3. On the Add Role modal, enter a role name and description.
4. Click into the Permissions field and select from the presets. The presets are read or write options on various registry entries.
5. Click into the Excluding field and select from the presets.
6. Click Add.

RB-DAC (PREVIEW)

Role-based Data Access Controls (RB-DAC) are available via preview feature. Contact Hydden Support to have the RB-DAC module enabled for your tenant.

With RB-DAC organizations have the option to grant or deny permissions to data in Hydden based on a user’s role.

The Data Access Allow and Data Access Deny drop-down fields are populated with the configured Classification. Those can be configured as filters to either grant or deny access to the data.

Reader

Readers are the day-to-day users of Hydden. They have view access to all resources, but they can’t make any changes.