Rights and permissions for user roles can be set in the solution's web interface or using the Kaspersky Container Security OpenAPI. The table below matches user rights and permissions in the web interface and the elements of requests to the API server.
User rights and permissions in the web interface and OpenAPI
|
Permission in the web interface |
Indication of permitted actions in the web interface |
Permission in OpenAPI |
Indication of permitted actions in OpenAPI |
|---|---|---|---|
|
Inventory |
|||
|
Clusters |
View and manage |
|
|
|
Node scan results |
View View and run rescan |
|
|
|
RBAC |
View |
|
|
|
Secrets |
View |
|
|
|
Image management |
View View and manage |
|
|
|
Image scan results |
View View and run rescan |
|
|
|
CI/CD Scans |
View View and manage |
|
|
|
Benchmarks |
View View and run rescan |
|
|
|
Components |
|||
|
Agents |
View and manage |
|
|
|
Core |
View |
|
|
|
Policies |
|||
|
Scanner policies |
View View and manage |
|
|
|
Assurance policies |
View View and manage |
|
|
|
Runtime policies |
View View and manage |
|
|
|
File Threat Protection settings |
View and manage |
|
|
|
User-defined reputation list |
View View and manage |
|
|
|
Response policies |
View View and manage |
|
|
|
Risk acceptance |
View View and manage |
|
|
|
Integration |
|||
|
Registries integrations |
View View and manage |
|
|
|
Signature validators integrations |
View View and manage |
|
|
|
Notifications integrations |
View View and manage |
|
|
|
LDAP integrations |
View and manage |
|
|
|
SIEM Integrations |
View View and manage |
|
|
|
Access management |
|||
|
Users |
View View and manage |
|
|
|
Roles |
View View and manage |
|
|
|
Scopes |
View View and manage |
|
|
|
Default scope |
View View and manage |
|
|
|
Administration |
|||
|
Licensing |
View View and manage |
|
|
|
Events |
View |
|
|
|
Reports |
View View and manage |
|
|