- Log in to the management console (https://localhost:9443/carbon) as admin (default credentials are admin/admin).
In the Main menu, click Add under Users and Roles.
Click Add New Role.
Enter the name of the user role (e.g.,
creator) and click Next.
Tip: The Domain drop-down list contains all user stores configured in the system. By default, you only have the PRIMARY user store. To configure secondary user stores, see Configuring Secondary User Stores.
The permissions page opens. Select the permissions according to the role that you create. The table below lists the permissions of the
Roles Permissions UI creator
- Configure > Governance and all underlying permissions.
- Manage > API > Create
- Manage > Resources > Govern and all underlying permissions
- Manage > API > Publish
- Manage > API > Subscribe
Click Finish once you are done adding permissions.
When a user creates an application and subscribes to an API, a role is created automatically as shown below.
These roles are not assigned any permissions when created. The application is visible only to users of that particular role. For other users to be able to view the application, a user with admin privileges has to assign the role to the users.
To add roles using APIs, you can use the RemoteUserStoreManagerService (an admin service of the WSO2 Carbon platform).