Authorization roles & permissions

jaffarsadik · November 3, 2021, 3:58pm

Hi,

I have two questions.

What is the limitations of each role on temporal web / server level, please describe me?

Among of four temporal services (frontend, worker, metrics & history) which services gives the metrics in Prometheus?

SergeyBykov · November 3, 2021, 11:49pm

The roles are mostly open-ended placeholders at this point to allow for free interpretation of them by custom authorizers.
The only exception is defaultAuthorizer uses definitions of read-only APIs.
All of the services emit metrics.

jaffarsadik · November 8, 2021, 6:32pm

Do we have a seperate tctl cli authorization?
Can u pls share examples for tctl authorization & claim mapper?

jaffarsadik · August 25, 2022, 11:27am

I am not sure @SergeyBykov is in Active Employee or left firm.

Can you please share the below information or redirect to right person.

As per Reader user can get access to set of the api as mentioned definitions of read-only APIs.

Do you have any standard template for each role limited to have set of the apis (ex., reader, writer & admin)?

Topic		Replies	Views
Metrics For Monitoring Server Performance Community Support performance , metrics	2	3718	August 27, 2020
What metrics does temporal expose out of box and how to consume this in prometheus? Community Support prometheus , metrics	10	7816	August 5, 2022
Prometheus metrics only have one namespace: temporal_system inside metrics Community Support prometheus , metrics	5	1022	June 3, 2022
Use new metrics system Community Support prometheus , metrics	2	565	July 11, 2022
Unable to view prometheus metrics using Spring boot 3 Community Support java-sdk , prometheus , metrics	15	3435	January 25, 2024