docs(intergration): examples (#939)

* rename to overview * wip * wip * wip * wip * wip * wip * examples * ts example * wip with grafana * add grafana tutorial * screenshots and grafana * figure out oauth proxy * authz oauth proxy * move img * merge from master * Apply suggestions from code review Co-authored-by: Florian Forster <florian@caos.ch> Co-authored-by: mffap <max@mffap.org>
2025-08-15 03:47:37 +00:00 · 2020-11-06 15:15:54 +01:00
parent 6eb9720ee6
commit 1de9d15690
28 changed files with 462 additions and 67 deletions
--- a/site/docs/administrate/00-overview.en.md
+++ b/site/docs/administrate/00-overview.en.md
@@ -17,11 +17,11 @@ title: Overview
  - Mobile Clients
    - Android
    - iOS / iPadOS
- Bearer Tokens to use with APIs
+- Bearer Tokens (JWT and opaque) to use with APIs
  - REST
  - GRPC
  - GraphQL
- Role Based Access Control
+- Role Based Access Control (RBAC) with delegation to let organisations manage authorisations on their own
 - OpenID Connect 1.0 (OIDC) support
 - OAuth 2.0 support
 - Identity Brokering
@@ -30,6 +30,9 @@ title: Overview
 - Management Console for central management of your data
 - Multi-factor Authentication
  - Support for TOTP/HOTP with any app, like authy, google authenticator, ...
+  - U2F (CTAP1)
+- Passwordless Authentication
+  - WebAuthN (FIDO2 / CTAP2)
 - User self-registration, recover password, email and phone verification, etc.
 - Organisation self-registration, domain verification, policy management
 - API's for easy integration in your application
--- a/site/docs/administrate/09-authorizations.de.md
+++ b/site/docs/administrate/09-authorizations.de.md
@@ -0,0 +1,5 @@
+---
+title: Authorizations
+---
+
+> This Language is not yet translated. Please consult the English version.
--- a/site/docs/administrate/09-authorizations.en.md
+++ b/site/docs/administrate/09-authorizations.en.md
@@ -0,0 +1,50 @@
+---
+title: Authorizations
+---
+
+### ZITADEL's management Roles
+
+ZITADEL's own role model is built around the IAM resource. The roles have some hierarchies to them. For example a IAM_OWNER can view and edit every resource of the system. ORG_OWNERS can only manage their resources included within their organisation. This includes projects, clients, users, and so on.
+
+#### How to give a user ZITADEL Roles
+
+
+> Screenshots
+
+#### System Roles
+
+IAM_OWNER
+
+IAM_OWNER_VIEWER
+
+#### Organisation Roles
+
+ORG_OWNER
+
+ORG_OWNER_VIEWER
+
+ORG_USER_PERMISSION_EDITOR
+
+ORG_PROJECT_PERMISSION_EDITOR
+
+ORG_PROJECT_CREATOR
+
+#### Owned Project Roles
+
+PROJECT_OWNER
+
+PROJECT_OWNER_VIEWER
+
+PROJECT_OWNER_GLOBAL
+
+PROJECT_OWNER_VIEWER_GLOBAL
+
+#### Granted Project Roles
+
+PROJECT_GRANT_OWNER
+
+PROJECT_GRANT_OWNER_VIEWER
+
+### Project Roles Management
+
+> Explain Project Authorization