Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Adding a new role for marketplace apps #5815

Merged
merged 9 commits into from
Jul 23, 2024
Merged

Adding a new role for marketplace apps #5815

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
7aeb4e1
Adds new marketplace app role
matthewshaver Jul 19, 2024
2045b47
ADding new information
matthewshaver Jul 19, 2024
2c3ab7b
Adding more info
matthewshaver Jul 19, 2024
dfe4728
Update website/docs/docs/dbt-cloud-apis/service-tokens.md
matthewshaver Jul 19, 2024
4308ef6
Update website/docs/docs/dbt-cloud-apis/service-tokens.md
matthewshaver Jul 19, 2024
00543bf
Merge branch 'current' into new-role
matthewshaver Jul 19, 2024
840167e
Update website/docs/docs/cloud-integrations/set-up-snowflake-native-a…
matthewshaver Jul 22, 2024
c61e942
Update website/docs/docs/cloud-integrations/set-up-snowflake-native-a…
matthewshaver Jul 23, 2024
bcd0eb1
Merge branch 'current' into new-role
matthewshaver Jul 23, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion website/docs/docs/cloud-integrations/set-up-snowflake-native-app.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -65,9 +65,10 @@ Configure dbt Cloud and Snowflake Cortex to power the **Ask dbt** chatbot.
Make sure to replace `SNOWFLAKE.CORTEX_USER`, `DEPLOYMENT_USER`, and `SL_USER` with the appropriate strings for your environment.

## Configure dbt Cloud
Collect three pieces of information from dbt Cloud to set up the application.
Collect the following pieces of information from dbt Cloud to set up the application.

1. From the gear menu in dbt Cloud, select **Account settings**. In the left sidebar, select **API tokens > Service tokens**. Create a service token with access to all the projects you want to access in the dbt Snowflake Native App. Grant these permission sets:
- **Manage marketplace apps**
- **Job Admin**
- **Metadata Only**
- **Semantic Layer Only**
Expand Down
3 changes: 3 additions & 0 deletions website/docs/docs/dbt-cloud-apis/service-tokens.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,9 @@ Security Admin service tokens have certain account-level permissions. For more
**Billing Admin** <br/>
Billing Admin service tokens have certain account-level permissions. For more on these permissions, see [Billing Admin](/docs/cloud/manage-access/enterprise-permissions#billing-admin).

**Manage marketplace apps** <br/>
Used only for service tokens assigned to marketplace apps (for example, the [Snowflake Native app](/docs/cloud-integrations/snowflake-native-app)).

**Metadata Only**<br/>
Metadata-only service tokens authorize requests to the Discovery API.

Expand Down
31 changes: 16 additions & 15 deletions website/snippets/_enterprise-permissions-table.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,21 +14,22 @@ Account roles enable you to manage the dbt Cloud account and manage the account

#### Account permissions for account roles

| Account-level permission| Account Admin | Billing admin | Project creator | Security admin | Viewer |
|:-------------------------|:-------------:|:-------------:|:---------------:|:--------------:|:------:|
| Account settings | W | | R | R | R |
| Audit logs | R | | | R | R |
| Auth provider | W | | | W | R |
| Billing | W | W | | | R |
| Groups | W | | R | W | R |
| Invitations | W | | W | W | R |
| IP restrictions | W | | | W | R |
| Licenses | W | | W | W | R |
| Members | W | | W | W | R |
| Project (create) | W | | W | | |
| Public models | R | R | R | R | R |
| Service tokens | W | | | R | R |
| Webhooks | W | | | | |
| Account-level permission| Account Admin | Billing admin | Manage <br></br> marketplace <br></br> apps | Project creator | Security admin | Viewer |
|:-------------------------|:-------------:|:------------:|:-------------------------:|:---------------:|:--------------:|:------:|
| Account settings | W | | | R | R | R |
| Audit logs | R | | | | R | R |
| Auth provider | W | | | | W | R |
| Billing | W | W | | | | R |
| Groups | W | | | R | W | R |
| Invitations | W | | | W | W | R |
| IP restrictions | W | | | | W | R |
| Licenses | W | | | W | W | R |
| Marketplace app | | | W | | | |
| Members | W | | | W | W | R |
| Project (create) | W | | | W | | |
| Public models | R | R | | R | R | R |
| Service tokens | W | | | | R | R |
| Webhooks | W | | | | | |

#### Project permissions for account roles

Expand Down
Loading