Role permissions
- Juan Tomás Alonso Nieto (Unlicensed)
- Juan Tomás Alonso Nieto (Deactivated)
- Borja Moro Moreno
- Sarah Bigault (Deactivated)
The following sections list all the role permissions available in the Devo Platform, classified under the set categories. Each permission includes View and Manage levels to better define the actions that a custom role can perform. Read Managing roles to learn more about custom roles and permissions.
Remember that the Admin and Owner roles grant all the permissions, while the No Privileges role is limited to modifying their own settings, receiving alerts, using custom finders, and view and create dashboards, as well as other general actions.
Alerts
This group includes two different groups of permissions, and each of them includes a set of related individual permissions.
Alert configuration
| Permission | View | Manage |
|---|---|---|
Alert configuration | Grants the user view-only access to the Administration → Alert Configuration area | Allows the user to view, create, modify and delete alert definitions in Administration → Alert Configuration. The user can also define new alerts after running a search |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
Triggered alerts
| Permission | View | Manage |
|---|---|---|
Triggered alerts | Allows the user to access Alerts → Alerts Dashboard and see the triggered alerts. Also, the user can see the Alerts tab in the Preferences area | Allows the user to view and manage triggered alerts in Alerts → Alerts Dashboard. Also, the user can see the Alerts tab in the Preferences area |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
Applications
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| Application Gallery | N/A | Grant the user access to Administration → Application Gallery and the ability to enable or disable applications for the domain |
Tools* *Note that this permission is not available in your domain by default. Contact Devo if you need to access this feature. | Grant the user access to the Tools area of the application | N/A |
Data
These are the groups included in this category:
Aggregation tasks
| Permission | View | Manage |
|---|---|---|
| Domain aggregation tasks | N/A | Allows the user to edit, run/stop and delete tasks in the Aggregation Tasks tab of the Administration → Data Management area |
Input data
| Permission | View | Manage |
|---|---|---|
| Data upload | N/A | Makes the Data Upload area available to the user so they can upload files from Dropbox or their local machine |
| Relays | Grants the user view-only access to Administration → Relays | Allows the user to manage and delete relays in Administration → Relays |
Permalinks
| Permission | View | Manage |
|---|---|---|
| Domain permalinks | The user can view all the domain permalinks in the Administration → Data Management → Permalinks area | Allows the user to view, modify, and delete permalinks created by any users in the domain in the Administration → Data Management → Permalinks area |
| My permalinks | Grants the user view-only access to the Permalinks tab in Administration → Data Management to view his/her own permalinks | Allows the user to access the Permalinks tab in Administration → Data Management to view, modify and delete his/her own permalinks. The user is also allowed to create new permalinks in the Dashboards area selecting Share → Permalinks |
Apart from the groups above, there are two other permissions in this category:
| Permission | View | Manage |
|---|---|---|
| my.app injections | Allows the user to access Administration → Data Management → Injections and view injections | Allows the user to access Administration → Data Management → Injections and view, edit or delete injections. The user can also create new injection tasks after running a search |
| OData | Allows the user to access the API & OData Feeds tab in Administration → Data management to view the existing OData feeds | Allows the user to access the API & Odata Feeds tab in Administration → Data management to view, edit and delete OData feeds. Also, the user can define new OData feeds after running a search |
Data search
This group includes two different group permissions, and each of them includes a set of related individual permissions.
Finders
| Permission | View | Manage |
|---|---|---|
Finders | Allows the user to access the Data Search → Explore Your Data area and use the default finder. You can also select a custom finder as the default one for the role in the dropdown box that appears after selecting this permission | Allows the user to access the Data Search → Explore Your Data area and use any available finder. Besides, the user can create, modify and delete custom finders |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
And these are the groups included in the Finders category:
Lookups
| Permission | View | Manage |
|---|---|---|
Lookups | Allows the user to view upload lookups in the Lookup Management tab of the Data Search area. The user can also use these lookups to apply query operations in a search | The user can access the Lookup Management tab in the Data Search area to view, create, edit or delete upload lookups. The user can also use these lookups to apply query operations in a search |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
Queries
| Permission | View | Manage |
|---|---|---|
| Domain search history | The user can access the most recently accessed queries in the domain in Data Search → Query History | N/A |
| Free text queries | N/A | Allows the user to run free-text queries in Data Search → Explore Your Data → Free Text Query |
Global searches* *Note that this permission is not available in your domain by default. Contact Devo if you need to access this feature. | N/A | Allows the user to perform global searches in Data Search → Explore Your Data → Global Search |
| Query management | Allows the user to view running queries in the Query Management tab of the Data Search area | Allows the user to view and manage running queries in the Query Management tab of the Data Search area |
Query priority* *Note that this permission is not available in your domain by default. Contact Devo if you need to access this feature. | N/A | Allows the user to set both the default and maximum query priority for each new session. In the drop-down menus below, the user can set the range for the role. |
Search window
| Permission | View | Manage |
|---|---|---|
| Custom tables | N/A | Allows the user to create and manage custom tables after running a search |
| Data search download | Allows the user to download data from their searches | N/A |
| Log autoparser | N/A | Allows the user to use the log autoparser in my.app tables that are not parsed |
| Show/hide columns | N/A | Allows the user to edit the default column configuration of a data table and save it as the default one for the domain |
| Time control* *Note that this permission is not available in your domain by default. Contact Devo if you need to access this feature. | N/A | Allows the user to choose the default reference time for tables that contain both creation and event dates |
Exchange
| Permission | View | Manage |
|---|---|---|
| Exchange | The user can access Exchange, as well as browse and install/uninstall contents. | N/A |
Flow
These are the permissions included in this group:
Own Flows
| Permission | View | Manage |
|---|---|---|
Own Flows | N/A | The user can manage their own Flows in the domain (create, read, update and delete). |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
Home
Home area
| Permission | View | Manage |
|---|---|---|
Home area | Makes the Home area visible to the user | N/A |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.
Apart from the group above, there is another permission in this category:
| Permission | View | Manage |
|---|---|---|
First steps | Makes the First Steps welcome window appear each time the user logs in to the domain | Allows the user to stop the First Steps welcome window from appearing upon login |
Machine learning
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
Models | Makes the First Steps welcome window appear each time the user logs in to the domain | Allows the user to stop the First Steps welcome window from appearing upon login |
NASS
Note that this group is not available in your domain by default. Contact Devo if you need to access this feature.
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| App management | N/A | The user can log in to the administration application to manage the apps |
| Clients management | N/A | The user can log in to the administration application to manage the domains and resellers |
| Issues | N/A | The user can log in to the administration application to log issues |
| Platform | N/A | The user can log in to the administration application to manage the platform |
Notifications
| Permission | View | Manage |
|---|---|---|
| Notifications | Makes the Notifications area available to the user | Allows the user to view and delete notifications |
Resources
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| Activeboards | The user can access the Activeboards area and view their own Activeboards | The user can access the Activeboards area, view, create, edit and delete their own Activeboards |
| Dashboards | Allows the user to view their own Dashboards in the Dashboards area | Allows the user to view, create, modify and delete their own Dashboards in the Dashboards area |
| Panels | Allows the user to view their own panels in the Panels area | Allows the user to view, create, modify and delete their own panels in the Panels area |
| User resources | N/A | Allows the user to view, edit and delete all the domain resources (activeboards, dashboards...) |
Security
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| API keys | Grants the user view-only access to the Access Keys tab in Administration → Credentials | Allows the user to view, generate and delete API keys in the Access Keys tab of the Administration → Credentials area |
| API v2 tokens | Allows the user to view existing APIv2 tokens in the Authentication Tokens tab of the Administration → Credentials area | Allows the user to view, create, edit and delete APIv2 tokens in the Authentication Tokens tab of the Administration → Credentials area |
| Domain authentication | Grants the user access to the Authentication tab in Preferences → Domain Preferences and view authentication methods for domain logins | Grants the user access to the Authentication tab in Preferences → Domain Preferences and the ability to enable or disable authentication methods for domain logins |
| HTTP tokens | Allows the user to view existing HTTP tokens in the Authentication Tokens tab of the Administration → Credentials area | Allows the user to view, create, enable/disable and delete HTTP tokens in the Authentication Tokens tab of the Administration → Credentials area |
| X.509 certs | Allows the user to view and download X.509 certificates in Administration → Credentials → X.509 Certificates | Allows the user to view, generate, download and delete X.509 certificates in Administration → Credentials → X.509 Certificates |
Social
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| Help - Contact | Grants the user access to the Help → Customer Support menu for contacting Devo customer support | N/A |
| Social Intelligence | Makes the Social Intelligence area available to the user | N/A |
| View Help - Social links | Makes the Devo social media link visible to the user in the Help area | N/A |
Users & Roles
These are the permissions included in this group:
| Permission | View | Manage |
|---|---|---|
| Preferences | N/A | Allows the user to edit his own preferences in Preferences → User Preferences. For users with the Admin role, this allows them to edit the Domain Preferences as well |
| Roles | Grants the user view-only access to Administration → Roles | Allows the user to create, modify and delete roles in Administration → Roles |
| View profile | Allows the user to view their own user profile | N/A |
Also, this category includes the following group permission:
| Permission | View | Manage |
|---|---|---|
Users | Grants the user view-only access to Administration → Users | Allows the user to view, create, modify and delete users in Administration → Users |
This is a group permission. This means that it is not only a category to classify some permissions, but also a permission itself that must be activated to select one or several of the permissions it includes. Note that enabling group permissions does not imply enabling the permissions under them.