This topic lists the full, general-availability (GA) permissions model across all Knowledge Hub actions. During Early Access, only the Administrator role is active; every action below is available to Administrators, and no other role is enforced yet. Refer to Access and permissions overview for the current Early Access-active role summary.
Points to remember
- You cannot access Knowledge Hub without the assigned roles.
- Roles apply to the entire Knowledge Hub service. There is no per-repository or per-Knowledge Base role assignment in Early Access.
- Developer and Viewer permissions require KB-level enforcement, which is enabled at GA.
Repository permissions
| Action | Administrator | Developer | Viewer |
|---|
| View repositories | ✓ | ✓ | ✓ |
| Create repository | ✓ | ✓ | No |
| Edit repository (name, description) | ✓ | ✓ | No |
| Enable / Disable repository | ✓ | ✓ | No |
| Delete repository | ✓ | No | No |
Knowledge Base permissions
| Action | Administrator | Developer | Viewer |
|---|
| View Knowledge Bases | ✓ | ✓ | ✓ |
| Create Knowledge Base | ✓ | ✓ | No |
| Edit Knowledge Base settings | ✓ | ✓ | No |
| Configure embedding settings | ✓ | ✓ | No |
| Configure retrieval settings | ✓ | ✓ | No |
| Publish Knowledge Base | ✓ | ✓ | No |
| Enable / Disable Knowledge Base | ✓ | ✓ | No |
| Delete Knowledge Base | ✓ | No | No |
Source permissions
| Action | Administrator | Developer | Viewer |
|---|
| View Sources | ✓ | ✓ | ✓ |
| Enable Source | ✓ | ✓ | No |
| Trigger manual run | ✓ | ✓ | No |
| Edit Source configuration | ✓ | ✓ | No |
| Disable Source | ✓ | ✓ | No |
| Remove Source | ✓ | ✓ | No |
Retrieval permissions
| Action | Administrator | Developer | Viewer |
|---|
| Submit retrieval queries | ✓ | ✓ | ✓ |
| View retrieval results | ✓ | ✓ | ✓ |