RDoc-3950 Document RBAC granular product permissions (Cloud portal)#2556
Merged
Conversation
70c0da9 to
d82e31e
Compare
Replace the removed monolithic Products account role with the new two-layer RBAC model: - cloud-account.mdx: rename Products -> Products Creation; add a Product permissions section (8 permissions, presets, default access for new products, owner bypass, migration note). - New Users & Access portal page; move user-management content there and document per-product permissions, presets, subset rule, and the Product : AccessType list column. - products-tab: permission gating notes + User Access widget. - support-tab: Support role is owner-equivalent for support requests. - cloud-features: Monitoring/OpenTelemetry & Power BI need ManageFeatures + Security to toggle. - cloud-security: cross-link the Security permission. - cloud-api: clarify API keys act at account (owner) level and are not subject to per-product permissions. Preset/role wording matched to shipped UI strings. Screenshots and the home-page product-access widget (RDBCL-5485, not yet shipped) left as TODO placeholders.
matz985
approved these changes
Jul 15, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
https://issues.ravendb.net/issue/RDoc-3950
Documents the granular per-product permissions feature in the RavenDB Cloud portal (RDoc-3950).
What changed
The old single Products account role is replaced by a two-layer model:
Files
cloud/cloud-account.mdx— rename role; new Product permissions section (permissions, presets, default access, owner bypass, migration note).cloud/portal/cloud-portal-users-and-access-tab.mdx— new page; user-management content moved here + per-product permissions, presets, subset rule,Product : AccessTypecolumn, no-access behavior.cloud/portal/cloud-portal-account-tab.mdx— user-management section replaced with a cross-link.cloud/portal/cloud-portal-products-tab.mdx— permission gating notes + User Access widget.cloud/portal/cloud-portal-support-tab.mdx— Support role is owner-equivalent for support requests.cloud/cloud-features.mdx— Monitoring/OpenTelemetry & Power BI need ManageFeatures + Security to toggle.cloud/cloud-security.mdx— cross-link the Security permission.cloud/cloud-api.mdx— clarify API keys act at account (owner) level, not subject to per-product permissions.Preset and role wording was matched to the actual portal UI strings.
Draft — outstanding before merge
{/* TODO(RDoc-3950) */}comments undercloud/portal/assets/, named per convention.cloud-portal-home-tab.mdxuntil it lands.npm run build:currentpasses (clean, no broken links).