or run

npx @tessl/cli init

Authorization and Permissions

CASL-based authorization with role-based access control.

Core Functions

function defineUserAbility(
  user: Pick<LightdashUser, 'role' | 'organizationUuid' | 'userUuid' | 'roleUuid'>,
  projectProfiles: Pick<ProjectMemberProfile, 'projectUuid' | 'role' | 'userUuid' | 'roleUuid'>[],
  customRoleScopes?: Record<Role['roleUuid'], RoleWithScopes['scopes']>
): MemberAbility;

function getUserAbilityBuilder(args: UserAbilityBuilderArgs): AbilityBuilder<MemberAbility>;

function getScopes(options?: { isEnterprise?: boolean }): Scope[];

const JWT_HEADER_NAME = 'lightdash-embed-token';

Organization Roles

enum OrganizationMemberRole {
  MEMBER = 'member',
  VIEWER = 'viewer',
  INTERACTIVE_VIEWER = 'interactive_viewer',
  EDITOR = 'editor',
  DEVELOPER = 'developer',
  ADMIN = 'admin'
}

Project Roles

enum ProjectMemberRole {
  VIEWER = 'viewer',
  INTERACTIVE_VIEWER = 'interactive_viewer',
  EDITOR = 'editor',
  DEVELOPER = 'developer',
  ADMIN = 'admin'
}

Space Roles

enum SpaceMemberRole {
  VIEWER = 'viewer',
  EDITOR = 'editor',
  ADMIN = 'admin'
}

Version

Tile

Files

authorization.mddocs/

Authorization and Permissions

Core Functions

Organization Roles

Project Roles

Space Roles

Version

Tile

Files

authorization.md.css-3qkkll{font-size:var(--chakra-font-sizes-sm);font-weight:var(--chakra-font-weights-normal);color:var(--chakra-colors-gray-300);}docs/

Authorization and Permissions

Core Functions

Organization Roles

Project Roles

Space Roles

authorization.mddocs/