Chain Builder's security model is based on a set of roles and permissions that permit staff members to access only the tools necessary for their job. When a more granular level of control is needed, however, you can assign permissions to individual chains in a workspace.
Requirements
- The Chain Security Admin role is required to assign permissions in Chains.
Assigning workspace admin rights
To assign chain-level permissions, you must first have workspace admin rights for that environment.
Here's how to assign those rights:
- In Chain Builder, click Settings at the top left.
- From the navigation bar at the top, select Users & Permissions and go to the Users tab.
- Find the user who should have edit access, and click the Edit pencil on the right side.
- Locate the environments where this user should have admin access, and click the checkbox on the right side.
- Click Save at the top right.
Assigning permissions to individual chains
Once a user has admin rights to a particular environment, they can define permissions for every chain in that environment.
To assign chain-level permissions:
- In Chain Builder, click Settings at the top left.
- From the navigation bar at the top, select Users & Permissions.
- From the Permissions tab, select the user group you'd like to edit.
- Find the environment where the required chain is located, and click Chain Permissions.
- Under Permissions on the right side, place a checkmark next to the appropriate level of access for that chain. Your changes will save automatically.
Understanding permission levels
Permission levels in Chains are leveled and correlated, meaning some permissions are automatically enabled when a higher-level permission is enabled. For instance, the Edit permission will automatically grant the Read and Execute permission.
Permission | Abilities granted |
Read | Permission to view a chain, but not run or edit it. |
Execute | Permission to view and run a chain, but not edit it. |
Edit | Permission to view, run, and edit a chain, but not access its settings. |
Admin | Full admin access to a chain. |