Role-based Access Control
Role-based access control (RBAC) lets you restrict access to specific functionality based on a user's role. In HCP Waypoint, RBAC allows platform engineers to manage templates and add-ons, and allows developers to use them to create applications and install add-ons.
Permission mappings
HCP Waypoint maps permissions to the admin, contributor, and viewer HCP roles.
Based on the permission associated with each role, we recommend you assign platform engineers the admin role and application developers the contributor role.
| Permission | Admin | Contributor | Viewer |
|---|---|---|---|
| Create template | ✅ | ❌ | ❌ |
| Create application from template | ✅ | ✅ | ❌ |
| View list of applications | ✅ | ✅ | ✅ |
| Create add-on definition | ✅ | ❌ | ❌ |
| Install add-on to application | ✅ | ✅ | ❌ |
| View list of add-ons | ✅ | ✅ | ✅ |
Assigning roles to users
Refer to the Manage users section of the HCP Users page for details and instructions on how to complete this process.