< img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=3131724&fmt=gif" />
🚀 KubeSphere v3.4.1 with fixed bugs is available now. Read the release notes for v3.4.1 → close
  • English
    • English
    • 简体中文
    1. 1.Create a KubeSphere Cloud account and log in to the platform.
    2. 2.In the upper-right corner, click Console, and then click Lite Cluster on the left.
    3. 3.Create a K8s cluster with KubeSphere installed.
    4. 4.Access KubeSphere with the default account and password (admin/P@88w0rd).
  •  Star
  1. Docs / 
  2. Documentation / 
  3. Workspace Administration and User Guide / 
  4. Workspace Role and Member Management

Documentation

Last updated:
    Edit

    Workspace Role and Member Management

    This tutorial demonstrates how to manage roles and members in a workspace.

    Prerequisites

    At least one workspace has been created, such as demo-workspace. Besides, you need a user of the workspace-admin role (for example, ws-admin) at the workspace level. For more information, see Create Workspaces, Projects, Users and Roles.

    Note

    The actual role name follows a naming convention: workspace name-role name. For example, for a workspace named demo-workspace, the actual role name of the role admin is demo-workspace-admin.

    Built-in Roles

    In Workspace Roles, there are four available built-in roles. Built-in roles are created automatically by KubeSphere when a workspace is created and they cannot be edited or deleted. You can only view permissions included in a built-in role or assign it to a user.

    Built-in RolesDescription
    workspace-viewerWorkspace viewer who can view all resources in the workspace.
    workspace-self-provisionerWorkspace regular member who can view workspace settings, manage app templates, and create projects and DevOps projects.
    workspace-regularWorkspace regular member who can view workspace settings.
    workspace-adminWorkspace administrator who has full control over all resources in the workspace.

    To view the permissions that a role contains:

    1. Log in to the console as ws-admin. In Workspace Roles, click a role (for example, workspace-admin) and you can see role details.

    2. Click the Authorized Users tab to see all the users that are granted the role.

    Create a Workspace Role

    1. Navigate to Workspace Roles under Workspace Settings.

    2. In Workspace Roles, click Create and set a role Name (for example, demo-project-admin). Click Edit Permissions to continue.

    3. In the pop-up window, permissions are categorized into different Modules. In this example, click Project Management and select Project Creation, Project Management, and Project Viewing for this role. Click OK to finish creating the role.

      Note

      Depends on means the major permission (the one listed after Depends on) needs to be selected first so that the affiliated permission can be assigned.

    4. Newly-created roles will be listed in Workspace Roles. To edit the information or permissions, or delete an existing role, click icon on the right.

    Invite a New Member

    1. Navigate to Workspace Members under Workspace Settings, and click Invite.

    2. Invite a user to the workspace by clicking icon on the right of it and assign a role to it.

    3. After you add the user to the workspace, click OK. In Workspace Members, you can see the user in the list.

    4. To edit the role of an existing user or remove the user from the workspace, click icon on the right and select the corresponding operation.

    Receive the latest news, articles and updates from KubeSphere


    Thanks for the feedback. If you have a specific question about how to use KubeSphere, ask it on Slack. Open an issue in the GitHub repo if you want to report a problem or suggest an improvement.

    Previous : Workspace Role and Member Management
    What’s on this Page