App Hub 角色和权限
使用集合让一切井井有条
根据您的偏好保存内容并对其进行分类。
App Hub 具有以下 Identity and Access Management (IAM) 角色:
- App Hub Admin (
roles/apphub.admin)
- App Hub Editor (
roles/apphub.editor)
- App Hub Viewer (
roles/apphub.viewer)
App Hub 角色
下表介绍了各种角色及其典型职责。
角色 |
说明 |
用途 |
App Hub Admin |
能够将服务项目关联到宿主项目、创建应用、更新应用属性、注册服务和工作负载、更新服务和工作负载属性,以及将应用控制权委托给 App Hub 编辑者。 |
- 管理宿主项目的完整生命周期并关联服务项目
- 通常是平台管理员,他们一般拥有管理权限,并且可以全面了解端到端架构
|
App Hub Editor |
能够创建和更新应用;注册和取消注册服务和工作负载;更新属性。 |
- 扩展创建、更新或删除服务和工作负载的功能,从而减轻平台管理员的工作量
- 通常是应用运营商,对部署有深入了解
|
App Hub Viewer |
能够查看服务、工作负载和应用及其属性。 |
- 实现对服务、工作负载和应用及其依赖项的基本可观测性
- 通常是组织中的大多数人员。为了获得最大价值,应向所有应用中心用户授予此角色
|
App Hub 权限
下表列出了 App Hub IAM 角色及其权限。
App Hub Admin
(roles/apphub.admin)
拥有对 App Hub 资源的完整访问权限。
|
apphub.*
apphub.applications.createapphub.applications.deleteapphub.applications.getapphub.applications.getIamPolicyapphub.applications.listapphub.applications.setIamPolicyapphub.applications.updateapphub.discoveredServices.getapphub.discoveredServices.listapphub.discoveredServices.registerapphub.discoveredWorkloads.getapphub.discoveredWorkloads.listapphub.discoveredWorkloads.registerapphub.locations.getapphub.locations.listapphub.operations.cancelapphub.operations.deleteapphub.operations.getapphub.operations.listapphub.serviceProjectAttachments.attachapphub.serviceProjectAttachments.createapphub.serviceProjectAttachments.deleteapphub.serviceProjectAttachments.detachapphub.serviceProjectAttachments.getapphub.serviceProjectAttachments.listapphub.serviceProjectAttachments.lookupapphub.services.createapphub.services.deleteapphub.services.getapphub.services.listapphub.services.updateapphub.workloads.createapphub.workloads.deleteapphub.workloads.getapphub.workloads.listapphub.workloads.update
resourcemanager.projects.get
resourcemanager.projects.list
|
App Hub Editor
(roles/apphub.editor)
拥有对 App Hub 资源的编辑权限。
|
apphub.applications.create
apphub.applications.delete
apphub.applications.get
apphub.applications.list
apphub.applications.update
apphub.discoveredServices.*
apphub.discoveredServices.getapphub.discoveredServices.listapphub.discoveredServices.register
apphub.discoveredWorkloads.*
apphub.discoveredWorkloads.getapphub.discoveredWorkloads.listapphub.discoveredWorkloads.register
apphub.locations.*
apphub.locations.getapphub.locations.list
apphub.operations.*
apphub.operations.cancelapphub.operations.deleteapphub.operations.getapphub.operations.list
apphub.serviceProjectAttachments.lookup
apphub.services.*
apphub.services.createapphub.services.deleteapphub.services.getapphub.services.listapphub.services.update
apphub.workloads.*
apphub.workloads.createapphub.workloads.deleteapphub.workloads.getapphub.workloads.listapphub.workloads.update
resourcemanager.projects.get
resourcemanager.projects.list
|
App Hub Viewer
(roles/apphub.viewer)
拥有对 App Hub 资源的查看权限。
|
apphub.applications.get
apphub.applications.list
apphub.discoveredServices.get
apphub.discoveredServices.list
apphub.discoveredWorkloads.get
apphub.discoveredWorkloads.list
apphub.locations.*
apphub.locations.getapphub.locations.list
apphub.operations.get
apphub.operations.list
apphub.serviceProjectAttachments.lookup
apphub.services.get
apphub.services.list
apphub.workloads.get
apphub.workloads.list
resourcemanager.projects.get
resourcemanager.projects.list
|
如需详细了解权限,请参阅预定义角色。
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可获得了许可,并且代码示例已根据 Apache 2.0 许可获得了许可。有关详情,请参阅 Google 开发者网站政策。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-09-10。
[[["易于理解","easyToUnderstand","thumb-up"],["解决了我的问题","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["很难理解","hardToUnderstand","thumb-down"],["信息或示例代码不正确","incorrectInformationOrSampleCode","thumb-down"],["没有我需要的信息/示例","missingTheInformationSamplesINeed","thumb-down"],["翻译问题","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["最后更新时间 (UTC):2025-09-10。"],[],[],null,[]]
