mirror of
https://github.com/goharbor/harbor.git
synced 2024-12-01 22:54:20 +01:00
changed user_guide.md
Signed-off-by: xaleeks <xalex@vmware.com>
This commit is contained in:
parent
e2a19d8ab9
commit
010096c897
@ -37,13 +37,13 @@ This guide walks you through the fundamentals of using Harbor. You'll learn how
|
|||||||
|
|
||||||
![rbac](img/rbac.png)
|
![rbac](img/rbac.png)
|
||||||
|
|
||||||
Harbor manages images through projects. Users can be added into one project as a member with three different roles:
|
Harbor manages images through projects. Users can be added into one project as a member with one of three different roles:
|
||||||
|
|
||||||
* **Guest**: Guest has read-only privilege for a specified project.
|
* **Guest**: Guest has read-only privilege for a specified project.
|
||||||
* **Developer**: Developer has read and write privileges for a project.
|
* **Developer**: Developer has read and write privileges for a project.
|
||||||
* **ProjectAdmin**: When creating a new project, you will be assigned the "ProjectAdmin" role to the project. Besides read-write privileges, the "ProjectAdmin" also has some management privileges, such as adding and removing members, starting a vulnerability scan.
|
* **ProjectAdmin**: When creating a new project, you will be assigned the "ProjectAdmin" role to the project. Besides read-write privileges, the "ProjectAdmin" also has some management privileges, such as adding and removing members, starting a vulnerability scan.
|
||||||
|
|
||||||
Besides the above three roles, there are two system-wide roles:
|
Besides the above three roles, there are two system-level roles:
|
||||||
|
|
||||||
* **SysAdmin**: "SysAdmin" has the most privileges. In addition to the privileges mentioned above, "SysAdmin" can also list all projects, set an ordinary user as administrator, delete users and set vulnerability scan policy for all images. The public project "library" is also owned by the administrator.
|
* **SysAdmin**: "SysAdmin" has the most privileges. In addition to the privileges mentioned above, "SysAdmin" can also list all projects, set an ordinary user as administrator, delete users and set vulnerability scan policy for all images. The public project "library" is also owned by the administrator.
|
||||||
* **Anonymous**: When a user is not logged in, the user is considered as an "Anonymous" user. An anonymous user has no access to private projects and has read-only access to public projects.
|
* **Anonymous**: When a user is not logged in, the user is considered as an "Anonymous" user. An anonymous user has no access to private projects and has read-only access to public projects.
|
||||||
|
Loading…
Reference in New Issue
Block a user