Please help me to understand these roles in Incus “admin”, “operator”, “user”, “viewer”? How can I assign them and what can they do?
They are roles that are part of the OpenFGA schema.
When using OpenFGA you can assign those roles to user and then scope them to either the entire server, a specific project or a specific instance.
In general admin gets you full access, operator allows you create/delete/manage objects but not reconfigure the environment, user lets you interact with what’s already there, viewer is read-only access.
1 Like
Can I assign these roles for server users or do I only have “incus” and “incus-admin” groups? The “incus” group is like “user” or “operator” role? Thanks.
Those roles are for OpenFGA, they cannot be applied to local users as Incus internally doesn’t really understand local users (everything is a REST API connection).
1 Like