Managing User Access to Event Portal

The level of access you have to the features and resources in Event Portal depends on the role you're assigned in PubSub+ Cloud and the permissions granted to that role. Roles can be assigned directly to users or, if your organization has SSO enabled, to user groups. For more information about assigning user roles, see Managing Users, Groups, Roles, and Permissions.

Event Portal Users
PubSub+ Cloud users with the Event Portal User role have limited access and viewing capabilities. They can't open an application domain or modeled event mesh unless they are granted access by someone with Manager level access. The following access levels can be granted to users and user groups with the Event Portal User role:
Application Domain Viewer
Event Portal Users with Viewer access to an application domain can perform these functions:
  • view the objects in the application domain
  • download the AsyncAPI document for applications and event APIs in the application domain
Application Domain Editor
Event Portal Users with Editor access to an application domain perform the same functions as users with Viewer access. They can also create, update, and delete objects in the application domain.
Application Domain Manager
Event Portal Users with Manager access to an application domain can perform the same functions as users with Editor access. They can also perform these functions:
  • change an object's version state
  • modify the application domain information, including name, description, and topic domains
  • add and delete custom attributes in the application domain
  • give users with the Event Portal User role access to the application domain
  • give users with the Event Portal User role the event access approver role for the application domain
Event Access Approver
Event Portal Users with approver access to an application domain can approve and decline event access requests. They can also perform the same functions as users with Application Domain Viewer access.
EP Runtime Viewer
Event Portal Users with Viewer access to an environment can view the objects in modeled event meshes that are part of the environment in Runtime Event Manager. To open objects in the modeled event mesh, users must also have Application Domain Viewer access for the application domain that contains the objects.
EP Runtime Editor
Event Portal Users with Editor access to an environment can perform the same functions as users with Viewer access. They can also perform these functions:
  • add and remove objects from the modeled event mesh if they have at least Editor level access to the application domain that contains the objects
  • rearrange the graph layout
Event Portal Managers
PubSub+ Cloud users with the Event Portal Manager role have full access to all Event Portal capabilities. They also have Manager level access to all application domains.
Administrators
PubSub+ Cloud users with the Administrator role have full access to all PubSub+ Cloud capabilities. Administrators can assign users any role in PubSub+ Cloud. In Event Portal, Administrators have the same access as Event Portal Managers.

For more information about setting application domain access for Event Portal Users, see Application Domains.

For more information about setting environment access for Event Portal Users, see Setting User Access to Environments.

The following table explains the scope of each role and access level:

Role Administrator Event Portal Manager Event Portal User without additional access

Assign Event Portal Manager and Event Portal User roles

Access No access No access

View PubSub+ Cloud users and roles

Access Access Access

Assign application domain and environment access to users with the Event Portal User role

Access Access No access

Designer access

Access Access

Access

Create and delete custom attributes

Access Access No access

Export and import application domains

Access Access No access

Enable deletion protection for application domains

Access Access No access

Runtime Event Manager access

Access Access

Limited access1

Open modeled event meshes Access Access No access

Create and manage configuration templates

Access Access No access

Catalog access

Access Access

Limited access2

KPI Dashboard access

Access Access

Limited access2

  1. No access to the Event Management Agents tab.
  2. Information displayed is limited to application domains with at least Viewer level access, shared events, and shared schemas .

The following table explains the scope of the access levels for Event Portal Users:

Role Event Portal User with Application Domain Manager Access Event Portal User with Application Domain Editor Event Portal User with Application Domain Viewer Access Event Portal User with Event Access Approver Access Event Portal User with EP Runtime Editor Access Event Portal User with EP Runtime Viewer Access
Scope of Operation Application Domain Modeled Event Mesh

Assign application domain access to users with the Event Portal User role

Access No access No access No access No access No access

Designer access

Access

Access

Access

Access

Access Access

Open application domains

Access Access Access Access No access No access

Add, edit, and delete objects in application domains

Access Access No access No access No access No access

Update application domain attributes

Access No access No access No access No access No access

Create and delete custom attributes

Limited access1

No access No access No access No access No access

Runtime Event Manager screen access

Limited access2

Limited access2

Limited access2

Limited access2

Limited access2

Limited access2

Open modeled event meshes

No access No access No access No access Access Access
Add and remove objects in modeled event meshes3 Conditional access Conditional access No access No access Access No access
Approve or decline event access requests No access No access No access Access No access No access
Create event access requests Access Access No access Access No access No access
View event access requests No access No access No access Access No access No access
  1. Custom attributes for individual application domains only. Event Portal Users with Manager level access can't create and delete custom attributes that apply to all application domains.
  2. No access to Event Management Agents or configuration templates.
  3. Users must have Editor level access to the environment containing the modeled event mesh and at least Editor level access to the application domain containing the objects they want to add or remove from the modeled event mesh.