Developer portal
RBAC scopes
Map API keys and user roles to least-privilege capabilities across operational domains.
Last updated: 2026-06-09
Role definitions
| Field | Type | Required | Description |
|---|---|---|---|
| viewer | read-only | Yes | Read scan outputs, dashboards, and compliance evidence without mutating tenant state. |
| operator | read-write operations | Yes | Run scans, manage schedules, and execute remediation workflows within assigned tenant scope. |
| admin | tenant administration | Yes | Full tenant control, including audit, billing controls, identity settings, and integration governance. |
Capability matrix by endpoint group
| Endpoint group | Viewer | Operator | Admin |
|---|---|---|---|
| Scans | Read scan status, findings, and reports. | Create, cancel, and rerun scans. | Full scan administration. |
| Schedules | Read schedule definitions. | Create, update, pause, resume schedules. | Override org-level schedule policies. |
| Remediation | Read remediation queue and ticket links. | Assign, annotate, transition remediation items. | Change remediation policy defaults and automations. |
| Audit | No access by default. | No access by default. | Read export and investigate tenant audit events. |
| Billing | No access. | No access. | Manage billing profile, plan controls, and invoices. |
| OIDC / SSO | No access. | Read identity status where exposed. | Configure identity provider settings and enforcement. |
Least-privilege recommendations
- Use viewer keys for dashboards, exports, and read-only BI or SIEM ingestion.
- Use operator keys for pipeline automation that must trigger scans or update remediation.
- Reserve admin keys for break-glass actions and controlled platform administration paths.
Found an issue? Report documentation feedback