Role permissions
The following table lists all the role permissions available in the Devo platform. Each permission includes View and Manage levels to better define the actions that a custom role can perform. Just select the required permission levels by checking the corresponding boxes. Read Managing roles to learn how to add permissions to a custom role, or modify them.
Remember that the Admin and Owner roles grant all the permissions, and the No Privileges role is limited to modifying his/her own settings, receiving alerts, using custom finders, and view and create dashboards, as well as other general action. Permissions included in the No Privileges role are indicated in the table.
| View | Manage | Included in the No Privileges role? | |
|---|---|---|---|
| API keys | Grants the user view-only access to the Access Keys tab in Administration → Credentials | Allows the user to view, generate and delete API keys in the Access Keys tab in Administration → Credentials | |
| API v2 Tokens | Allows the user to view existing tokens for APIv2 queries in the Authentication Tokens tab of the Administration → Credentials area | Allows the user to view, create, modify, and delete tokens for APIv2 queries in the Authentication Tokens tab of the Administration → Credentials area | |
| Activeboards | Allows the user to access the Activeboards area and view his/her own Activeboards | Allows the user to access the Activeboards area and view, create, edit and delete his/her own Activeboards | |
| Aggregation tasks | Grants the user view-only access to the Aggregation Tasks tab in Administration → Data Management | Allows the user to edit, run/stop and delete aggregation tasks in the Aggregation Tasks tab of the Administration → Data Management area | |
| Alert configuration | Grants the user view-only access to the Administration → Alerts Configuration area | Allows the user to view, create, modify and delete alert definitions in Administration → Alert Configuration. The user can also define new alerts after running a search | |
| Email delivery methods | Grants the user view-only access to the Email tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the Email tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new email delivery methods | |
| HTTP-JSON delivery methods | Grants the user view-only access to the HTTP-JSON tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the HTTP-JSON tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new HTTP-JSON delivery methods | |
| JIRA delivery methods | Grants the user view-only access to the JIRA tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the JIRA tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new JIRA delivery methods | |
| Pagerduty delivery methods | Grants the user view-only access to the Pagerduty tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the Pagerduty tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new Pagerduty delivery methods | |
| Pushover delivery methods | Grants the user view-only access to the Pushover tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the Pushover tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new Pushover delivery methods | |
| Service Desk delivery methods | Grants the user view-only access to the Service Desk tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the Service Desk tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new Service Desk delivery methods | |
| Slack delivery methods | Grants the user view-only access to the Slack tab in Administration → Alert configuration → Delivery Methods | Grants the user access to the Slack tab in Administration → Alert configuration → Delivery Methods, and the ability to view and create new Slack delivery methods | |
| Applications | X | Grants the user access to Administration → Applications Gallery and the ability to enable or disable applications for the domain | |
Collections Note that this permission will not be available if collections are not enabled in your domain. | Grants view-only access to the Subquery Collections tab in Administration → Data Management | The user can access the Subquery Collections tab in the Administration → Data Management area to view, edit and delete collections. The user can also create new collections in the search window | |
| Custom tables | X | Allows the user to create and manage custom tables after running a search | |
| Dashboards | Allows the user to access the Dashboards area and view his/her own Dashboards | Allows the user to access the Dashboards area and view, create, edit and delete his/her own Dashboards | ✔ (manage) |
| Data upload | X | Makes the Data Upload area available to the user so they can upload files from Dropbox or their local machine | |
| Domain authentication | Grants the user access to the Authentication tab in Preferences → Domain Preferences and view authentication methods for domain logins | Grants the user access to the Authentication tab in Preferences → Domain Preferences and the ability to enable or disable authentication methods for domain logins | |
| Domain permalinks | The user can view all the domain permalinks in the Administration → Data Management → Permalinks area | Allows the user to view, modify, and delete permalinks created by any users in the domain in the Administration → Data Management → Permalinks area | |
| Finders | Allows the user to access the Data Search → Finder area and use the default finder. You can also select a custom finder as the default one for the role in the dropdown box that appears after selecting this permission | Allows the user to access the Data Search → Explore Your Data area and use any available finder. Besides, the user can create, modify and delete custom finders | ✔ (view) |
| Free text queries | X | Allows the user to run free text queries in Data Search → Explore Your Data → Free Text Query | |
| Domain query history | The user can access the most recently accessed queries in the domain in Data Search → Query History | X | |
| Lookups | Allows the user to view upload lookups in the Lookup Management tab of the Data Search area. The user can also use these lookups to apply query operations in a search | The user can access the Lookup Management tab in the Data Search area to view, create, edit or delete upload lookups. The user can also use these lookups to apply query operations in a search | |
Query lookups Note that this permission will not be available if query lookups are not enabled in your domain. | Allows the user to view, modify, or delete query lookup tables in the Lookup Management tab of the Data Search area. The user can also define new query lookups in the search window, after running a search, and use them to apply query operations in a search. | The user can view query lookups in Data Search → Lookup Management and use them to apply query operations in a search. | |
| Lookup restrictions | Allows the user to view, but not edit, the restrictions that dictate which tables a lookup can be used with in Data Search → Lookup Management, selecting the ellipsis menu of the required lookup and clicking Restrictions | Allows the user to view and define the restrictions that dictate which tables a lookup can be used with in Data Search → Lookup Management, selecting the ellipsis menu of the required lookup and clicking Restrictions | |
Global searches Note that this permission will not be available if global search feature is not enabled in your domain. | X | Allows the user to perform global searches in Data Search → Explore Your Data → Global Search | |
| Query management | Allows the user to view running queries in the Query Management tab of the Data Search area | Allows the user to view and manage running queries in the Query Management tab of the Data Search area | |
| First steps | Makes the First Steps welcome window appear each time the user logs in to the domain | Allows the user to stop the First Steps welcome window from appearing upon login | ✔ (view and manage) |
| HTTP tokens | Allows the user to view existing HTTP tokens in the Authentication Tokens tab of the Administration → Credentials area | Allows the user to view, create, enable/disable, and delete HTTP tokens in the Authentication Tokens tab of the Administration → Credentials area | |
| Help - Contact | Grants the user access to the Help → Support menu for contacting Devo customer support | X | ✔ |
| Home area | Makes the Home area visible to the user | X | ✔ |
| Top 10 (Last 24h) widget | Allows the user to see the Top 10 (Last 24h) widget in the Home area, and access the queries it shows | X | |
| Log autoparser | X | Allows the user to use the log autoparser in any my.app table | |
| My permalinks | Grants the user view-only access to the Permalinks tab in Administration → Data Management to view his/her own permalinks | Allows the user to access the Permalinks tab in Administration → Data Management to view, modify and delete his/her own permalinks | |
| Notifications | Makes the Notifications area available to the user | X | ✔ |
| OData | Allows the user to access the API & Odata Feeds tab in Administration → Data management to view the existing OData feeds | Allows the user to access the API & Odata Feeds tab in Administration → Data management to view, edit and delete OData feeds. Also, the user can define new OData feeds after running a search | |
| Panels | Allows the user to view his/her own panels in the Panels area | Allows the user to view, create, modify and delete his/her own panels in the Panels area | |
| Preferences | X | Allows the user to edit his own preferences in Preferences → User Preferences. For users with the Admin role, this allows them to edit the Domain Preferences as well | ✔ |
| Relays | Grants the user view-only access to Administration → Relays | Allows the user to manage and delete relays in Administration → Relays | |
| Roles | Grants the user view-only access to Administration → Roles | Allows the user to create, modify and delete roles in Administration → Roles | |
| User resources | X | Allows the user to view, edit and delete all the domain resources (applications, dashboards...) | |
| Show/hide columns | X | Allows the user to edit the default column configuration of a data table and save it as the default one for the domain | |
| Social Intelligence | Makes the Social Intelligence area available to the user | X | ✔ |
| Triggered alerts | Allows the user to access Alerts → Alerts Dashboard and see the triggered alerts. Also, the user can see the Alerts tab in the Preferences area | Allows the user to view and manage triggered alerts in Alerts → Alerts Dashboard. Also, the user can see the Alerts tab in the Preferences area | ✔ (view) |
| Users | Grants the user view-only access to Administration → Users | Allows the user to view, create, modify and delete users in Administration → Users | |
| Domain activity | Allows the user to view the list of recent activity in the domain in Administration → Users → User Activity | X | |
| Domain connections | Allows the user to view the list of last connections in the domain in Administration → Users → User Logins | X | |
| View Help - Social links | Makes the Devo social media links visible to the user in the Help area | X | ✔ |
| View profile | Allows the user to view his or her own user profile | X | ✔ |
| X.509 certs | Allows the user to view and download X.509 certificates in Administration → Credentials → X.509 Certificates | Allows the user to view, generate, download, and delete X.509 certificates in Administration → Credentials → X.509 Certificates | |
| my.app injections | Allows the user to access Administration → Data Management → Injections and view injections | Allows the user to access Administration → Data Management → Injections and view, edit or delete injections. The user can also create new injection tasks after running a search |