On FOSSA, Role-Based Access Control (RBAC) is used to manage which projects a user has access to, and what actions they're allowed to perform on those projects. Users can be assigned a role which determines what permissions they have, and added to Teams that determine which Projects they have access to.
Enterprise Feature
This feature is only available in a FOSSA Enterprise subscription. Contact [email protected] for more details.
On the Users Settings page, you can assign a user one of three roles.
Role | Permissions |
|---|---|
Viewer | Read-only access to projects that belong to their Teams |
Editor | Limited to viewing and changing projects that belong to their Teams |
Team Admin | Limited to viewing and changing projects that belong to their Teams |
Admin | Full access to all projects in the Organization |
Global-Read Only Viewer | Ability to see all projects and issues |
By default, new users are created with a role of "Admin".
On the Team Settings page, you can create new Teams, and manage which Users and Projects belong to each Team. Users with a role of "Viewer", "Editor", or "Team Admin" must be added to a Team in order to see any Projects on FOSSA.
Auto-Assign Roles with Single Sign On Providers
FOSSA's can integrate with your SAML Identity Provider to automatically assign roles to Users and add them to Teams when integrated with Single Sign On.
User Role Auto Assignment
Configure a 'role' attribute that contains the permission value of the associated user. The values that are accepted today are
- 'admin'
- 'team_admin'
- 'editor'
- 'gloval_viewer'
Team Auto Assignment
Configure to include a 'teams' attribute in the SAML response. FOSSA will update the user to include users are only assigned to those teams. If the teams are not available in FOSSA, they will get created as part of the assignment process.
Please contact support for more information.
Updated about a month ago