Skip to content

Roles & Permissions

Botium Box authorization system is based on Roles and Permissions.

  • Permissions are assigned to Roles
  • Users are assigned to Roles
  • Permissions are also assigned to API Keys for programmatic access

Role based security

Botium Box comes with preconfigured roles following best practices for test automation projects (every role has the permissions from the ones above included):

  • Role GUEST has read-only access to test results and test sets
  • Role TESTER has permissions to author and run test cases
  • Role TESTMANAGER has permissions to prepare testing infrastructure
  • Role ADMIN has all permissions, including user management

Users can be assigned multiple roles.

Permissions

Permissions are separated for all Botium Box object types like Test Sets, Test Projects, Device Sets etc.

Test Sets

  • TESTSETS_SELECT
  • TESTSETS_CREATE
  • TESTSETS_UPDATE
  • TESTSETS_DELETE
  • TESTSETS_UPLOAD (Test Case Wizard)
  • TESTSETS_DOWNLOAD (Test Case Wizard)

Chatbots

  • CHATBOTS_SELECT
  • CHATBOTS_CREATE
  • CHATBOTS_UPDATE
  • CHATBOTS_DELETE
  • CHATBOTS_LIVECHAT

Test Projects

  • TESTPROJECTS_SELECT
  • TESTPROJECTS_CREATE
  • TESTPROJECTS_UPDATE
  • TESTPROJECTS_DELETE

Test Sessions

  • TESTSESSIONS_SELECT
  • TESTSESSIONS_CREATE (Starting Test Sessions)
  • TESTSESSIONS_DELETE
  • TESTSESSIONS_REPORTS (Test Session Downloads section)

Performance Tests

  • PERFORMANCETESTSESSIONS_SELECT
  • PERFORMANCETESTSESSIONS_CREATE
  • PERFORMANCETESTSESSIONS_DELETE
  • PERFORMANCETESTSESSIONS_REPORTS

Botium Coach (NLP/NLU Testing)

  • TRAINERSESSIONS_SELECT

Botium Crawler

  • CRAWLERPROJECTS_SELECT
  • CRAWLERPROJECTS_CREATE
  • CRAWLERPROJECTS_UPDATE
  • CRAWLERPROJECTS_DELETE
  • CRAWLERSESSIONS_SELECT
  • CRAWLERSESSIONS_CREATE
  • CRAWLERSESSIONS_DELETE
  • CRAWLERSESSIONS_REPORTS

Botium Box Administration

Botium Box Agents

  • AGENTS_SELECT: 'AGENTS_SELECT',
  • AGENTS_CREATE: 'AGENTS_CREATE',
  • AGENTS_UPDATE: 'AGENTS_UPDATE',
  • AGENTS_DELETE: 'AGENTS_DELETE',

Device Cloud Providers and Device Sets

  • DEVICESETS_SELECT
  • DEVICESETS_CREATE
  • DEVICESETS_UPDATE
  • DEVICESETS_DELETE
  • DEVICEPROVIDERS_SELECT
  • DEVICEPROVIDERS_MANAGE

User and Permission Management

  • USERS_MANAGE
  • APIKEYS_SELECT
  • APIKEYS_MANAGE

Registered Components

  • REGISTEREDCOMPONENTS_SELECT
  • REGISTEREDCOMPONENTS_MANAGE

File Browser

  • FILESYSTEM_READ
  • FILESYSTEM_WRITE

System Settings

  • SYSTEMSETTINGS_MANAGE
  • IMPORT_PRISMA

Wildcards

When assigning permissions, wildcards can be used:

  • Granting all permissions for an object type, for example CHATBOTS_*
  • Granting a permission on all object types, for example *_SELECT

Environment variable: BOTIUMBOX_DISABLE_PERMISSIONS

Comma separated list of permissions which are disabled for everyone (except admin) - useful for working with the default preconfigured roles, but disable certain behaviour.