Roles
The Lagertha API generates users with different roles, each having specific responsibilities:
ROLE_SUPER_ADMIN
, the super administrators, are used to create applications, generate admin users, and monitor the API logs.ROLE_ADMIN
, the administrators, are used to interface software with the API, allowing the creation of standard users and managing access to clusters and sentinels. ⚠️ They do not have access to encryption keys.ROLE_USER
, the standard users are the physical users of your software; they can only access their resources and can access sentinels to encrypt and decrypt their data.
In simple terms:
Rôle | Task/Assignment |
---|---|
ROLE_SUPER_ADMIN | Dedicated to system tasks |
ROLE_ADMIN | Dedicated to the third-party API, responsible for assigning sentinels to clusters |
ROLE_USER | Creation and consumption of sentinels, used by the client. Their access must be synchronized with the third-party API access |