apitech
/
grafana
mirror of https://github.com/grafana/grafana
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
39736 Commits
2179 Branches
608 Tags
1.9 GiB
Tag: Branch: Tree: 3d8890453f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3d8890453f'
${ noResults }
grafana/docs/sources/administration/roles-and-permissions/access-control/configure-rbac/index.md

29 lines
2.5 KiB
Raw Normal View History Unescape

Docs: RBAC GA (#49062)
3 years ago
---
Convert TOML front matter to YAML (#49690) Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
3 years ago
aliases:
Use relative aliases for all non-current Grafana aliases (#60062) * Use relative aliases for all non-current Grafana aliases Prevents non-latest documentation "stealing" the page away from latest and through permanent redirects for latest pages that no longer exist. The redirected pages are indexed by search engines but our robots.txt forbids them crawling the non-latest page. Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Remove aliases from shared pages Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Rewrite all current latest aliases to be next Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Fix typo in latest alias Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Remove all current page aliases find docs/sources -type f -name '*.md' -exec sed -z -i 's#\n *- /docs/grafana/next/[^\n]*\n#\n#' {} \; find docs/sources -type f -name '*.md' -exec sed -Ez -i 's#\n((aliases:\n *-)|aliases:\n)#\n\2#' {} \; Signed-off-by: Jack Baldry <jack.baldry@grafana.com> * Prettier Signed-off-by: Jack Baldry <jack.baldry@grafana.com> Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
3 years ago
- ../../../enterprise/access-control/configure-rbac/
Convert TOML front matter to YAML (#49690) Signed-off-by: Jack Baldry <jack.baldry@grafana.com>
3 years ago
description: Learn how to configure RBAC.
menuTitle: Configure RBAC
title: Configure RBAC in Grafana
Docs: RBAC GA (#49062)
3 years ago
weight: 30
---
# Configure RBAC in Grafana
docs: corrects broken links (#60594) correct broken links
3 years ago
> **Note:** Available in [Grafana Enterprise]({{< relref "../../../../introduction/grafana-enterprise/" >}}) and [Grafana Cloud Advanced](/docs/grafana-cloud).
RBAC: Update the docs homepage to mention that RBAC is only enterprise (#52890) * RBAC: Update the docs homepage to mention that RBAC is only enterprise * Don't mention that there is anything to enable for provisioning RBAC * Add GE notices to child RBAC pages * Extend the RBAC availibility note to Cloud Advanced Co-authored-by: Garrett Guillotte <garrett.guillotte@grafana.com>
3 years ago
adjusts access control directory structure (#54865)
3 years ago
The table below describes all RBAC configuration options. Like any other Grafana configuration, you can apply these options as [environment variables]({{< relref "../../../../setup-grafana/configure-grafana/#configure-with-environment-variables" >}}).
Docs: RBAC GA (#49062)
3 years ago
Docs: adds permission validation setting (#58970) * adds permission validation setting * Update docs/sources/administration/roles-and-permissions/access-control/configure-rbac/index.md Co-authored-by: Misi <mgyongyosi@users.noreply.github.com> * makes prettier Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
3 years ago
| Setting | Required | Description | Default |
| ------------------------------- | -------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------- |
| `permission_cache` | No | Enable to use in memory cache for loading and evaluating users' permissions. | `true` |
| `permission_validation_enabled` | No | Grafana enforces validation for permissions when a user creates or updates a role. The system checks the internal list of scopes and actions for each permission to determine they are valid. By default, if a scope or action is not recognized, Grafana logs a warning message. When set to `true`, Grafana returns an error. | `false` |
RBAC: Add config option to reset basic roles on start up (#59598) * RBAC: add config option to reset basic roles on start up Co-authored-by: Jguer <joao.guerreiro@grafana.com> * Update docs Co-authored-by: Jguer <joao.guerreiro@grafana.com> * Add to sample.ini as well Co-authored-by: Jguer <joao.guerreiro@grafana.com> Co-authored-by: Jguer <joao.guerreiro@grafana.com>
3 years ago
| `reset_basic_roles` | No | Reset Grafana's basic roles' (Viewer, Editor, Admin, Grafana Admin) permissions to their default. Warning, if this configuration option is left to `true` this will be done on every reboot. | `true` |
Docs: RBAC GA (#49062)
3 years ago
## Example RBAC configuration
```bash
[rbac]
permission_cache = true
```