List of MindSphere API roles

The roles in Developer Cockpit are available in the following format: mdsp:core:<application>.<role>.

Given below is a table which summarizes the type of roles that are available in Developer Cockpit.

Services

Nomenclature

Description

Agent Management

mdsp:core:agm.fullaccess

This role entitles all read/write access to Agent Management APIs.

mdsp:core:agm.readonly

This role entitles read-only access to Agent Management APIs.

Analytics Services

mdsp:core:analytics.adb.user

This role entitles to call Anomaly Detection Batch endpoints.

mdsp:core:analytics.user

This role entitles basic roles for all the analytic services.

Asset Management

mdsp:core:assetmanagement.admin

Admin role allows users to create, read, update or delete assets, asset types, aspect types and images in Asset Management Service.

mdsp:core:assetmanagement.reporter

Reporter role allows users to read assets, asset types, aspect types and files in Asset Management Service.

mdsp:core:assetmanagement.standarduser

Standard user role allows users to read or update assets and images, and to read asset types and aspect types in Asset Management Service.

mdsp:core:assetmanagement.subtenantuser

SubTenant user role allows users to read asset ~ and aspect types, read or update assets, and read, update or delete images in Asset Management Service.

Data Exchange Service

mdsp:core:dataexch.user

This role allows tenants to upload, download and delete data.

Data Flow Engine

mdsp:core:dataflowengine.standarduser

Data Flow Engine standard user role will have all reading scopes.

Data Staging

mdsp:core:dl.dsAdmin

This role entitles read, write and delete access to data staging.

mdsp:core:dl.dsUser

This role entitles read and write access to data staging.

Configuration Files

mdsp:core:dvccfgmgmt.fullaccess

This role entitles all read/write access to Configuration File APIs.

Event Management

mdsp:core:em.eventcreator

This role entitles full access to create events (create, read and update) in Event Management system.

mdsp:core:em.eventmanager

This role entitles access to manage everything in Event Management system.

mdsp:core:em.eventviewer

This role entitles access to read events and event types in Event Management system.

Identity Management

mdsp:core:im.meIamViewer

The Identity Management service manages all authorization-related functionality within MindSphere. The role entitles access to the current user's information including assigned roles in tenant's user IAM system

Identity Management

mdsp:core:im.userIamAdmin

This role entitles administrative access (read and write) to a tenant's user IAM system.

mdsp:core:im.userIamViewer

This role entitles read only access to a tenant's user IAM system.

Image Analysis

mdsp:core:imageanalysis.inference.user

This role allows the user to call object detection/localization inference service.

IoT File Service

mdsp:core:iot.filAdmin

This role entitles read, write and delete access to files.

mdsp:core:iot.filUser

This role entitles read access to files.

IoT Time Series

mdsp:core:iot.timAdmin

This role entitles read, write and delete access to time series services (Time Series, Aggregations, Subscription and Export)

mdsp:core:iot.timUser

This role entitles read access to time series.

IoT Time Series Aggregates

mdsp:core:iot.tsaUser

This role entitles access to time series aggregates.

Job Manager

mdsp:core:jobmgr.user

This role entitles a basic role for all job manager operations.

MindConnect Device Management

mdsp:core:mindcnctdvm.fullaccess

This role entitles all read/write access to Mind Connect Device Management APIs.

mdsp:core:mindcnctdvm.readonly

This role entitles read-only access to Mind Connect Device Management APIs.

Mind Connect API

mdsp:core:mindconnect.fullaccess

This role entitles all read/write access to Mind Connect APIs.

mdsp:core:mindconnect.readonly

This role entitles read-only access to Agent Management APIs.

Agent Message Box

mdsp:core:msg.fullaccess

This role entitles all read/write access to Agent Message Box APIs.

mdsp:core:msg.readonly

This role entitles read-only access to Agent Message Box APIs.

Model Management Service

mdsp:core:amm.user

This role entitles base role for Model Management of analytical solutions.

Spectrum Analysis FFT

mdsp:core:spectrumanalysis.fft.user

This role entitles capability to call Spectrum Analysis FFT.

Tenant Management Service

mdsp:core:tm.tenantAdmin

This role entitles full administrative access to the respective tenant.

Tenant Management Service

mdsp:core:tm.tenantUser

This role entitles permissions for standard tenant users.

Usage Transparency Service

mdsp:core:uts.analyst

This role entitles tenants to view the usage data.