Setting Instance-Level Permissions on Gateway Asset
Pre-requisites:
To assign instance-level permissions on a gateway, you must have one of the following roles:
CentraSite Administrator: instances of
API Gateway,
API Portal,
Mediator, and
Insight Server gateways in any organization in
CentraSite.
Organization Administrator: instances of
API Gateway,
API Portal,
Mediator, and
Insight Server gateways in your organization.
API Gateway Administrator: instances of
API Gateway in the specific organization to which your
API Gateway Administrator role applies.
API Portal Administrator: instances of
API Portal gateway in the specific organization to which your
API Portal Administrator role applies.
Mediator Administrator: instances of
Mediator and
Insight Server gateways in the specific organization to which your
Mediator Administrator role applies.
In addition to the above, you can assign instance-level permissions on a gateway instance if you have the Full instance-level permission on the gateway itself.
You assign instance-level permissions on a gateway asset using the Permission action in the Gateway Details page.
Note: If you do not see the Permission action in the Gateway Details page, it is probably because you do not have the required role or permission to modify the permission details of the gateway.
When assigning instance-level permissions on a gateway, keep the following points in mind:
You can assign permissions to any individual user or group defined in
CentraSite.
The groups to which you can assign permissions include the following system-defined groups:
Group Name | Description |
Users | All users within a specified organization. |
Members | All users within a specified organization and its child organizations. |
Everyone | All users of CentraSite including guest users. |
If a user is affected by multiple permission assignments, the user receives the union of all the assignments. For example, if group ABC has Modify permission on an
API Gateway and group XYZ has Full permission on the same
API Gateway, users that belong to both groups will, in effect, receive Full permission on the
API Gateway.
To assign instance-level permissions on a gateway asset
1. In the CentraSite Business UI activity bar, click Governance Rules.
2. To filter the list to display the available API Gateway, API Portal, Mediator, and Insight Server gateways, do the following:
a. Go to the advanced search panel.
b. In the Narrow Your Results section, do the following:
a. Locate Applicable Scopes.
b. Select the required type of gateway asset from the drop-down list:
API Gateway API Portal Mediator Insight c. Click the plus button next to the drop-down box or press Enter to add the scope to the search recipe.
CentraSite displays the list of available API Gateway, API Portal, Mediator, and Insight Server gateways.
3. In the displayed list, select the gateway you want to assign the user and group permissions.
This opens the Gateway Details page. Also, the actions bar displays a set of actions that are available for working with the displayed gateway.
4. On the actions bar of the Gateway Details page, click Permission.
This opens the Assign Permissions dialog box.
5. To add users or groups to the User and Group Permissions list, do one of the following:
a. Type a partial string in the Add User or Group text box. CentraSite applies the filter to the users and groups in registry.
b. Select the user or group to which you want to assign permissions.
c. Click the plus button next to the text box or press Enter to add the user or group to the User and Group Permissions list.
-OR-
a. Click Choose.
This opens the Choose Users and Groups dialog.
b. Type a partial string in the Add User or Group text box. CentraSite applies the filter to the users and groups in registry.
c. Click the Search icon.
d. Select the users and groups to which you want to assign permissions.
e. Click OK.
6. To remove a user or group from the User and Group Permissions list, select the Delete icon beside the group name or user ID.
7. For Setting Instance-Level Profile Permissions. Select the View, Modify, and Full check boxes to assign specific permissions to each user and group in the Users and Groups Permissions list as follows:
Permission | Allows the selected user or group to... |
View | Examine the details of the gateway. |
Modify | Examine and modify the details of the gateway. This permission also allows the selected user or group to publish and unpublish APIs to the gateway. |
Full | Examine and modify the details, and delete the gateway. This permission also allows the selected user or group to assign instance-level permissions to the gateway. |
8. Click Save.