Skip to content

Managing user permissions

Data stored in QruiseOS provides an incredible insight into the inner workings of your QPUs. Due to the sensitive nature of this data, you might restrict which resources users have access to. QruiseOS allows you to achieve that out of the box with a built-in user management system. For security reasons, a newly-created user has no permissions whatsoever. They can log in to QruiseOS, but they won't be able to see any of the QPUs. You must grant them access manually, reducing the chances of inadvertent data leakage.

In the following sections, we'll explain how to grant users access to QPUs and how to assign additional tenant administrators.

Check your permissions!

Managing user permissions is restricted to tenant administrators only. Regular users will not be able to perform this action.

Inspecting user permissions

Start by selecting the "Admin settings" menu item in the QruiseOS dashboard to access the tenant administrator view:

QruiseOS dashboard for admin users

In the tenant administrator view that opens, click on the "Users" button:

Admin settings view

This will show you the list of all the users registered in the system. In our case, it consists of "newton", "copernicus", "maxwell", and "lagrange":

Users list view

Note that you will be able to see your user in this list as well. Indeed, in our example, the user "newton" is actually the tenant administrator that we created previously. You can verify it by clicking on it in the list:

User management view for current user

Observe that the "Tenant admin" checkbox is indeed selected. However, no other checkbox is. You can check them manually if you like, but it is not necessary for tenant administrators as they have access to all QPUs regardless.

Warning

If you are the sole tenant administrator, do not uncheck the tenant admin checkbox. This action is irreversible and your installation will be left with no administrators. If that happens to you, please contact the Qruise support team for assistance.

Let's see if the permission matrix for user "copernicus" that we created in the previous article is any different:

User management view for a user without any roles assigned

Indeed, no checkbox is selected - that is the default behaviour. You need to add permissions manually.

Editing user permissions

To edit user permissions select the checkboxes in the permissions matrix. You can read about the roles and their exact meaning in a separate article. For now, we will grant the user "copernicus" writer access to the "onboarding-chip" QPU. To do so, select the appropriate checkbox and click on the "Save" button to finish:

User management view for a user with roles assigned

After this step, "copernicus" will be able to access the "onboarding-chip" QPU.

Granting tenant administrator rights is equally easy - select the "Tenant admin" checkbox for the user you want to elevate to the admin status.

Warning

It is advised to only grant users a minimal set of permissions that allows them to achieve their tasks. Particular care should be exercised when granting any user admin status.