The list of available permissions is below. Note that if permissions or roles are changed for the logged-in user, the user needs to log out and log back in for this change to take effect.
| Group | Code | Name | Description |
|---|---|---|---|
| Components | COMPONENTS_CREATE | Components - Create New Components | You can create new components |
| Components | COMPONENTS_EDIT_ANY | Components - Edit any existing components | You can change any existing components information |
| Components | COMPONENT_HASH_ACCESS | Components - Access component intake interface | You have access to the component hashing interface |
| Components | EDIT_OWN_KB_COMPONENTS | Components - Edit own components created from KB identification. | You can edit components created by your user as a result of a KB identification |
| Components | COMPONENT_COMMENTS_EDIT_ANY | Components - Add and remove all component comments | Allows you to add, remove or edit all components comments |
| Components | COMPONENT_COMMENTS_ADD | Components - Add and remove your own component comments | Allows you to add, remove or edit your own components comments |
| FOSSID Webapp Debug | VIEW_DEBUG_INFORMATION | FOSSID Webapp Debug - View System Debug Information | You can view debug information in interfaces |
| Ignore Rules | IGNORE_RULES_SET_GLOBAL | Ignore Rules - Set global ignore rules | You can create new global ignore rules |
| Jira | JIRA_CREATE_TICKETS | Jira - Allow creation of tickets in Jira | You can create tickets in Jira |
| Licenses | LICENSES_ADMINISTRATE | Licenses - Administrate licenses | You can create and delete existing licenses |
| Log | LOG_ACCESS | Log - Access to System Log View | You can access System Log |
| Log | LOG_DELETE | Log - Deletes existing Log entries | You can delete log entries |
| Messages | MESSAGES_BROADCAST_ALL | Messages - Broadcast message to all active users. | Broadcast message to all active users. |
| Projects | PROJECT_ACCESS_ANY | Projects - Access & Search any project | You can search and access any existing project even though you are not a member. |
| Projects | PROJECT_UPDATE_ANY | Projects - Update any project | You can update any project. |
| Projects | PROJECT_DELETE_ANY | Projects - Delete any project | You can delete any project. |
| Projects | PROJECTS_CREATE | Projects - Create New Projects | You can create new projects. |
| Projects | PROJECT_LIST_ALL | Projects - List all projects | You can list all user projects |
| Projects | PROJECTS_COMPONENT_APPROVER | Projects - Projects components approver | You can approve projects components |
| Projects | PROJ_COMP_LIST | Projects - View project-component interface | Access to project-component interface |
| Projects | PROJECTS_MANAGE_STRING_MATCH_RULES | Projects - Add and remove String Match Rules | You can add and remove String Match Rules on Project level |
| Projects | APPROVAL_POLICY_GLOBAL | Projects - Approval policy administration | Allows you to set approval policies for components in any project |
| Quick View | QUICK_VIEW_ACCESS | Quick View - Access Quick View Interface | You have access to the Quick View Interface |
| Roles & Permissions | ROLES_PERMISSIONS_ADMINISTRATE | Roles & Permissions - Administrate Roles & Permissions | Provide access to Administrate Roles and Permissions in the system. |
| Scans | SCAN_ACCESS_ANY | Scans - Access & Search any scan | You can access and search any scan even though you are not a Project member. |
| Scans | SCAN_UPDATE_ANY | Scans - Update any scan | You can update any scan. |
| Scans | SCAN_DELETE_ANY | Scans - Delete any scan | You can delete any scan. |
| Scans | SCAN_CREATE | Scans - Create New Scans | You can create new scans. |
| Scans | SCAN_ACCESS | Scans - Access Scans Interface | You have access to the Scans Interface |
| Scans | SCANS_LIST_ALL | Scans - List all scans | You can list all user scans |
| Scans | REFRESH_FILES | Scans - Look for file changes in file system | Look for file changes in file system |
| Scans | SCANS_MANAGE_STRING_MATCH_RULES | Scans - Add and remove String Match Rules | You can add and remove String Match Rules on Scan level |
| Scans | GLOBAL_MANAGE_STRING_MATCH_RULES | Scans - Add and remove Global String Match Rules | You can add and remove String Match Rules that will be applied globally |
| Scans | VSF_ACCESS | Scans - VSF - Access the VSF Interface | Allows you to access and use the VulnSnippet Finder |
| Snippet Search | SNIPPET_SEARCH_ACCESS | Snippet Search - Access Snippet Search Interface | You have access to the Snippet Search Interface |
| System | SYSTEM_ACCESS | System - View System Information | You can access system information interface |
| System | MANAGE_BACKUPS | System - Manage database backups | Create/delete/restore backups from Workbench |
| System | EDIT_FOSSID_CONFIGURATION | System - Edit FossID configuration file | Edit FossID configuration file |
| Users | USERS_DELETE_ANY | Users - Delete any user | You can delete any user. |
| Users | USERS_ASSIGN_PERMISSIONS | Users - Users assign Roles & Permissions | You can assign Roles and Permissions to users |
| Users | USERS_EDIT_ANY | Users - Edit any User | You can edit eny user information |
| Vulnerabilities | VIEW_SECURITY_INFORMATION | Vulnerabilities - View security information | You can view security information. |
| Vulnerabilities | VULNERABILITIES_VIEW_ACCESS | Vulnerabilities - Access Vulnerabilities page | Allows you access the Vulnerabilities page |
| Vulnerabilities | VULNERABILITIES_ACCESS_ANY | Vulnerabilities - View all Vulnerabilities and associated VeX information | Allows you view all Vulnerabilities and the associated VeX information |
| Vulnerabilities | VEX_EDIT | Vulnerabilities - Edit the permitted VeX information | Allows you to edit the VeX information from the Projects/Scans you have access to |
| Vulnerabilities | VEX_EDIT_ANY | Vulnerabilities - Edit any VeX information | Allows you to edit any VeX information |
| Whitelisting | WHITE_LIST_ADMIN | Whitelisting - Access to whitelist administration | You can administrate whitelisting |