Permissions

All permissions in Anzu are modeled as scopes. These scopes are made up of multiple segments representing resources and actions. Each segment can be replaced with a wildcard to allow for more flexibility.

Scopes are used on different layers, for teams and personal access tokens.

Examples

projects:create
Copytext

This scope allows to create projects within a team.

projects:{project}:update
Copytext

This scope allows to update a specific project.

projects:{project}:*
Copytext

This scope allows to perform any action on a specific project.

projects:*:update
Copytext

This scope allows to update any project.

IDs and wildcards

Scopes are separated by entity IDs or wildcards. You do not have to interact with these manually, as the dashboard exposes a visual interface to scope access tokens and roles.