Access Control
Description
The access control panel gives you fine grained control over access to resources.
Reach the access control panel from the admin drop down:
- Click the Profile Icon in the top right corner
- Select Access Control from the drop down
Select a user from the left hand user pane to define the user's access rights.
API Access
The same rights that control access to elements of the UI also control access to the same aspects of the API.
Create a new user
In the access control panel:
- Click the New User button in the bottom of the user pane
- Enter display name and email address
- Enter and confirm a new password.
- Click Create
Passwords can be changed anytime and are stored securely
The user can later change the password from the admin panel.
Assigned API Keys
Create or revoke API keys for the user.
Create an API Key for a user by clicking the + button under API Keys. In a similar way you can revoke an API Key for a user by clicking the secondary action ... button and click Revoke API Key.
Assigned projects
Assign projects to a user by clicking the + button under Assigned Projects and select a project.
Access rights and roles
Access rights can be defined for entities such as projects, flows, lexicons, playbooks down to fine grained flow properties such as Basic or Advanced flow nodes.
For each item, the privilege to execute a create, read, update or delete (CRUD) actions can be set in a role based manner. A role is a set of privileges for the a user assigned to it. Roles assigned to a user define the access control list (ACL) displayed under Access Rights and are updated immediately.
The following default roles are available:
| Role | Description |
|---|---|
| Admin | Admins have unlimited access to anything inside their organisation. In a new installation, the system will create one user with this role. A platform owner should create a new user with this role and delete the automatically created one on first login. |
| Basic | The Basic role can view most entities in the system. Once a new user is created within the system, this role will get assigned automatically. |
| Marketer | The Marketer role has all permissions the Basic role has, plus: - can edit basic flow nodes - can edit lexicons (read, update) - can edit playbooks (read, update) - can edit forms (read, update) - can view contact profiles - has full access on analytics |
| Advanced Editor | The Advanced Editor has all permissions the Marketer has, plus: - can edit advanced flow nodes - has full permissions on lexicons - has full permissions on playbooks - has full permissions on forms - can view and update contact profiles - has full access on analytics |
| Developer | The Developer has all permission the Advanced Editor has, plus: - has full access on logs - has full access on endpoints - has full access on all project resources - has full access on analytics |
In addition to the mentioned default roles, we have the following more-specific roles which can be assigned in addition to any of the default roles:
| Project Admin | Adds the following permissions: - full access to all project resources (create, read, update, delete) except the create & delete permission for import/export |
| Basic Flow Editor | Adds the following permissions: - read/update permission for flows - all permissions for basic Flow nodes - read/update permissions for Intents - read permissions for Flow node comments - read permissions for Flow node descriptions |
| Advanced Flow Editor | Inherits everything from the Basic Flow Editor, plus: - full permissions for advanced Flow nodes - full permissions for Code nodes - full permissions for Logic nodes - full permissions for Marketing nodes - full permissions for Database nodes - full permissions for Intents - full permissions for states - full permissions for Flow node comments - full permissions for Flow node descriptions - full permissions for Copy/Paste etc - full permissions for changing the order of Flow nodes |
| Custom modules editor | Adds the following permissions: - read/update permissions for Custom modules |
| Custom modules admin | Adds the following permissions: - full permissions for Custom modules |
| Intent editor | Adds the following permissions: - read/update permissions for Intents |
| Lexicon editor | Adds the following permissions: - read/update permissions for Lexicons |
| Lexicon admin | Adds the following permissions: - full permissions for Lexicons |
| Playbook editor | Adds the following permissions: - read/update permissions for Playbooks |
| Playbook admin | Adds the following permissions: - full permissions for Playbooks |
| Form / Process editor | Adds the following permissions: - read/update permissions for Forms / Processes |
| Form / Process admin | Adds the following permissions: - full permissions for Forms / Processes |
| Endpoint admin | Adds the following permissions: - full permissions for Endpoints |
| NLP Connector admin | Adds the following permissions: - full permissions for NLP / NLU Connectors |
| Database connections admin | Adds the following permissions: - full permissions for Database connections |
| Logs | Adds the following permissions: - full permissions for Logs |
| Conversations | Adds the following permissions: - full permissions for Conversations |
| ApiKey user | Adds the following permissions: - usage of ApiKeys and the Cognigy.AI RESTful API. The same permissions apply if an ApiKey is used. |
| Userprofile / Contactprofile viewer | Adds the following permissions: - read permissions for contact profiles |
| Userprofile / Contactprofile editor | Adds the following permissions: - read/update permissions for contact profiles |
| Userprofile / Contactprofile admin | Adds the following permissions: - full permissions on contact profiles |
| ODATA | Adds the following permissions: - full permissions to user our ODATA interface and query analytics information |
| Analytics | Adds the following permissions: - full permissions on analytics |
| Packaging admin | Adds the following permissions: - full permissions on import / export |
| Secrets basic | Adds the following permissions: - read permissions for Secrets |
| Secrets editor | Adds the following permissions: - read/update permissions for Secrets |
| Secrets admin | Adds the following permissions: - full permissions for Secrets |
| Livechat | Adds the following permissions: - full permissions to user our Cognigy.AI Livechat |
Updated over 2 years ago