Tenant
A tenant is a person or an organization that uses our solution or infrastructure to enrich their applications or platform. We use the term client or tenant interchangeably.
Person as a tenant
In this case, the namespace resources are all managed by a single person. The different functionalities of an application like Identity, Content, Observability, etc., are managed and maintained by this person. They will be having all the roles and access to manage all the resources in their namespace.
Organizational tenant
In an organizational tenant, usually there will be multiple persons involved in managing the application functionalities like identity, content, observability, etc.
There also will be a need for sub-roles under each functionality, like developers, managers, admins, etc. There can be a need for one or many owners for a resource or a group of resources.
We will be assigning roles in Apicircuit to effectively manage the access to resources. Let us now explore different roles available.
Namespace roles
Do not assign the namespace roles to all the users in the namespace.
These roles affect how the user can interact with all the resources under the said namespace.
| Role | Description |
|---|---|
| Manage namespace | Users with this role can modify or delete the namespace. |
| Create resource | Users with this role can create a new resource under the existing namespace. |
| View wallet | Users with this role can view the wallet for recent transactions. |
| View pricing | Users with this role can view the pricing policy for the namespace. |
| Fund wallet | Users with this role can add money to the wallet linked to the namespace. |
| Withdraw funds | Users with this role can withdraw the funds added earlier from the wallet linked to the namespace. |
Administration roles
Use admin role for the resource managers and manager role for the developers.
These roles affect how the user can interact with the said resources under the said namespace.
| Role | Description |
|---|---|
| Admin | Users with this role can modify or delete the resource. They also can assign roles for this resource to manage or administer. |
| Manager | Users with this role can modify the resource but cannot assign roles for this resource. |
Manager roles
Only assign the roles for the features that are required.
These roles affect how the user can interact with the said resources under the said namespace for the said functionality.
| Role | Description |
|---|---|
| Manage identity | Users with this role can modify the configurations that affects how the identity is managed for your application. |
| Manage content | Users with this role can modify the configurations that affects content for your application. |