Developer Roles and Content Permissions
The Roles Tab contains a list of available developer roles as well as providing the ability to create and edit roles.
Selecting Create Role allows you to enter a unique role name, as well as a comment to provide context for the nature of the role. You can assign the role to existing developers from within the role creation page. Clicking Create saves the role and returns you to the Roles List view. There you can see your newly created role as well as any other previously defined roles.
Clicking View displays the Role Details page with a list of developers assigned.
Deleting a role will remove it from any developers assigned the role and remove the role restriction from any content files it is applied to.
The Content Tab shows the list of content files used by the Dev Portal. You can apply roles to your content files, restricting access only to developers who possess certain roles. Selecting an individual content file displays a dropdown of available developer roles where you can choose which role has access to the file. Unchecking all available roles will leave the file unauthenticated.
An additional option, the *
role, is preset in the list. This predefined role behaves differently from other roles. When a content file has the *
role attached to it, any developer may view the page as long as they are authenticated. Additionally, the *
role may not be used in conjunction with other user-defined roles and will deselect those roles when *
is selected.
When a role is applied to a content file using the Content Tab, a special attribute readable_by
is added to the headmatter of the file.
In the case of spec files, readable_by
is applied under the key x-headmatter
or .
The value of readable_by
is an array of string role names that have access to view the content file. An exception is when the *
role is applied to the file. In this case, the value of readable_by
is no longer an array, because it contains the single string character *
.