Browse Source

[Feature-12040][docs] Update Granted Permissions Guide for PR#12048 (#12587)

* Upload new ui screenshots.

* Update document of Granted Permissions.

* Delete unused images.
3.2.0-release
Yiming Guo 2 years ago committed by GitHub
parent
commit
064fec88b0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
  1. 20
      docs/docs/en/guide/security.md
  2. 14
      docs/docs/zh/guide/security.md
  3. BIN
      docs/img/auth-en.png
  4. BIN
      docs/img/auth-project-en.png
  5. BIN
      docs/img/new_ui/dev/security/no-permission-error.png
  6. BIN
      docs/img/new_ui/dev/security/project-authorize.png
  7. BIN
      docs/img/new_ui/dev/security/project-authroize-step-1.png
  8. BIN
      docs/img/new_ui/dev/security/project-authroize-step-2.png
  9. BIN
      docs/img/new_ui/dev/security/user-authorize.png

20
docs/docs/en/guide/security.md

@ -99,20 +99,20 @@ public void doPOSTParam()throws Exception{
## Granted Permissions
- Granted permissions include project permissions, resource permissions, data source permissions, and UDF function permissions.
- Administrators can authorize projects, resources, data sources, and UDF functions that ordinary users do not create. Because the authorization methods of projects, resources, data sources and UDF functions are all the same, the project authorization is used as an example to introduce.
- Note: For projects created by the user, the user has all permissions. The item list and the selected items list are not displayed.
* Granted permissions include project permissions, resource permissions, data source permissions, and UDF function permissions.
* Administrators can authorize projects, resources, data sources, and UDF functions that ordinary users do not create. Because the authorization methods of projects, resources, data sources and UDF functions are all the same, the project authorization is used as an example to introduce.
* Note: For projects created by the user, the user has all permissions. Therefore, permission changes to projects created by users themselves are not valid.
- The administrator enters the `Security Center -> User Management` page, and clicks the "Authorize" button of the user to be authorized, as shown in the following figure:
<p align="center">
<img src="../../../img/auth-en.png" width="80%" />
</p>
![project-authroize-step-1](../../../img/new_ui/dev/security/project-authroize-step-1.png)
- Select the project to authorize the project.
- Select one or more projects and click the button above to authorize the project. The upper buttons from left to right correspond to `revoke all permissions`, `grant read permissions`, and `grant all permissions` (which including both read and write permissions).
<p align="center">
<img src="../../../img/auth-project-en.png" width="80%" />
</p>
![project-authroize-step-2](../../../img/new_ui/dev/security/project-authroize-step-2.png)
- If a user has only the read permission but not the write permission for a project, and the user is trying to do something like delete or update the project, an error message is displayed indicating that the user has no write permission and cannot complete the operation.
![no-permission-error](../../../img/new_ui/dev/security/no-permission-error.png)
- Resources, data sources, and UDF function authorization are the same as project authorization.

14
docs/docs/zh/guide/security.md

@ -95,14 +95,18 @@
* 授予权限包括项目权限,资源权限,数据源权限,UDF函数权限,k8s命名空间。
* 管理员可以对普通用户进行非其创建的项目、资源、数据源、UDF函数、k8s命名空间。因为项目、资源、数据源、UDF函数、k8s命名空间授权方式都是一样的,所以以项目授权为例介绍。
* 注意:对于用户自己创建的项目,该用户拥有所有的权限。则项目列表和已选项目列表中不会显示
- 管理员进入安全中心->用户管理页面,点击需授权用户的“授权”按钮,如下图所示:
* 注意:对于用户自己创建的项目,该用户默认拥有所有的权限,因此对用户自己创建的项目进行权限变更是无效的
- 管理员进入`安全中心->用户管理页面`,点击需授权用户的“授权”按钮,如下图所示:
![user-authorize](../../../img/new_ui/dev/security/user-authorize.png)
![project-authroize-step-1](../../../img/new_ui/dev/security/project-authroize-step-1.png)
- 选择项目,进行项目授权
- 勾选单个或多个项目,再点击上方授权按钮进行项目授权。上方按钮从左至右分别对应着`撤销所有权限`,`授予读权限`和`授予所有权限`(包括读权限和写权限)
![project-authorize](../../../img/new_ui/dev/security/project-authorize.png)
![project-authroize-step-2](../../../img/new_ui/dev/security/project-authroize-step-2.png)
- 如果用户对某个项目只拥有读权限而没有写权限,则在执行删除项目或更新项目等操作时,会返回错误提示,提示用户没有写权限,无法完成该操作。
![no-permission-error](../../../img/new_ui/dev/security/no-permission-error.png)
- 资源、数据源、UDF 函数授权同项目授权。

BIN
docs/img/auth-en.png

Binary file not shown.

Before

Width:  |  Height:  |  Size: 257 KiB

BIN
docs/img/auth-project-en.png

Binary file not shown.

Before

Width:  |  Height:  |  Size: 33 KiB

BIN
docs/img/new_ui/dev/security/no-permission-error.png

Binary file not shown.

After

Width:  |  Height:  |  Size: 266 KiB

BIN
docs/img/new_ui/dev/security/project-authorize.png

Binary file not shown.

Before

Width:  |  Height:  |  Size: 152 KiB

BIN
docs/img/new_ui/dev/security/project-authroize-step-1.png

Binary file not shown.

After

Width:  |  Height:  |  Size: 346 KiB

BIN
docs/img/new_ui/dev/security/project-authroize-step-2.png

Binary file not shown.

After

Width:  |  Height:  |  Size: 498 KiB

BIN
docs/img/new_ui/dev/security/user-authorize.png

Binary file not shown.

Before

Width:  |  Height:  |  Size: 146 KiB

Loading…
Cancel
Save