diff --git a/src/current/_includes/cockroachcloud/org-roles/cloud-roles-table.md b/src/current/_includes/cockroachcloud/org-roles/cloud-roles-table.md index 1299f3eb4ff..c3a8d14d634 100644 --- a/src/current/_includes/cockroachcloud/org-roles/cloud-roles-table.md +++ b/src/current/_includes/cockroachcloud/org-roles/cloud-roles-table.md @@ -2,45 +2,46 @@ The following table describes the high level permissions given by each Cockroach
-| | [Org. Member]({% link cockroachcloud/authorization.md %}#organization-member) | [Org. Admin]({% link cockroachcloud/authorization.md %}#organization-admin) | [Billing Coord.]({% link cockroachcloud/authorization.md %}#billing-coordinator) | [Cluster Creator]({% link cockroachcloud/authorization.md %}#cluster-creator) | [Cluster Operator]({% link cockroachcloud/authorization.md %}#cluster-operator) | [Cluster Admin]({% link cockroachcloud/authorization.md %}#cluster-admin) | [Cluster Developer]({% link cockroachcloud/authorization.md %}#cluster-developer) | [Cluster Monitor]({% link cockroachcloud/authorization.md %}#cluster-monitor) | [Metrics Viewer]({% link cockroachcloud/authorization.md %}#metrics-viewer) | [Folder Admin]({% link cockroachcloud/authorization.md %}#folder-admin) | [Folder Mover]({% link cockroachcloud/authorization.md %}#folder-mover) | -|---|-------------|-------------|------------------|------------------|-------------------|----------------|--------------------|------------------|----------------|----------------|----------------| -| **User/Access Management** | | | | | | | | | | -| Assign and revoke roles | — | ✓ | — | — | — | ✓ | — | — | — | — | — | -| Assign {{ site.data.products.cloud }} user and service account roles | — | — | — | — | — | ✓ | — | — | — | — | — | -| Manage SQL users | — | — | — | — | — | ✓ | — | — | — | — | — | -| Manage {{ site.data.products.cloud }} users and service accounts | — | ✓ | — | — | — | ✓ | — | — | — | — | — | -| Apply roles at the [folder]({% link cockroachcloud/folders.md %}) scope | — | — | — | — | — | — | — | — | — | ✓ | — | -| **Cluster & Infrastructure** | | | | | | | | | | -| Create cluster or [private cluster]({% link cockroachcloud/private-clusters.md %}) | — | — | — | ✓ | — | — | — | — | — | — | — | -| Create / edit / delete cluster | — | — | — | — | — | ✓ | — | — | — | — | — | -| Edit / delete clusters created by this user | — | — | — | ✓ | — | — | — | — | — | — | — | -| Create / delete / manage [folders]({% link cockroachcloud/folders.md %}) | — | — | — | — | — | — | — | — | — | ✓ | — | -| Move cluster between [folders]({% link cockroachcloud/folders.md %}) | — | — | — | — | — | — | — | — | — | — | ✓ | -| Scale nodes | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| Upgrade CockroachDB | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| Configure [maintenance windows]({% link cockroachcloud/advanced-cluster-management.md %}#set-a-maintenance-window) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| Use the [{{ site.data.products.cloud }} Terraform provider]({% link cockroachcloud/provision-a-cluster-with-terraform.md %}) | — | — | — | ✓ | — | ✓ | — | — | — | — | — | -| **Monitoring & Observability** | | | | | | | | | | -| View cluster details | — | — | — | — | — | — | ✓ | — | — | — | — | -| View [audit logs]({% link cockroachcloud/cloud-org-audit-logs.md %}) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| View [insights]({% link cockroachcloud/insights-page.md %}) | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | -| View [jobs]({% link cockroachcloud/jobs-page.md %}) | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | -| View [sql activity]({% link cockroachcloud/statements-page.md %}) | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | -| View [metrics]({% link cockroachcloud/metrics.md %}) | — | — | — | — | ✓ | ✓ | — | — | ✓ | — | — | -| Send [test alerts]({% link cockroachcloud/alerts-page.md %}#send-a-test-alert) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| Access [DB console]({% link cockroachcloud/network-authorization.md %}#db-console) | — | — | — | — | ✓ | ✓ | ✓ | — | — | — | — | -| **Security** | | | | | | | | | | -| Configure [cluster SSO]({% link cockroachcloud/cloud-sso-sql.md %}) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| Manage [egress perimeter controls]({% link cockroachcloud/egress-perimeter-controls.md %}) | — | — | — | — | — | ✓ | — | — | — | — | — | -| Manage [network authorization]({% link cockroachcloud/network-authorization.md %}) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| View PCI status | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| **Database & Data** | | | | | | | | | | -| Manage databases | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| View / restore [backups]({% link cockroachcloud/backup-and-restore-overview.md %}) | — | — | — | — | ✓ | ✓ | — | — | — | — | — | -| **Billing & Licensing** | | | | | | | | | | -| Manage [billing]({% link cockroachcloud/billing-management.md %}) | — | — | ✓ | — | — | — | — | — | — | — | — | -| Manage [email alerts]({% link cockroachcloud/alerts-page.md %}#configure-alerts) | — | ✓ | — | — | — | — | — | — | — | — | — | -| Manage CockroachDB [Self-Hosted cluster licenses]({% link {{ site.current_cloud_version }}/licensing-faqs.md %}#obtain-a-license) | — | ✓ | — | — | — | — | — | — | — | — | — | +| | [Org. Member]({% link cockroachcloud/authorization.md %}#organization-member) | [Org. Admin]({% link cockroachcloud/authorization.md %}#organization-admin) | [Billing Coord.]({% link cockroachcloud/authorization.md %}#billing-coordinator) | [Billing Viewer]({% link cockroachcloud/authorization.md %}#billing-viewer) | [Cluster Creator]({% link cockroachcloud/authorization.md %}#cluster-creator) | [Cluster Operator]({% link cockroachcloud/authorization.md %}#cluster-operator) | [Cluster Admin]({% link cockroachcloud/authorization.md %}#cluster-admin) | [Cluster Developer]({% link cockroachcloud/authorization.md %}#cluster-developer) | [Cluster Monitor]({% link cockroachcloud/authorization.md %}#cluster-monitor) | [Metrics Viewer]({% link cockroachcloud/authorization.md %}#metrics-viewer) | [Folder Admin]({% link cockroachcloud/authorization.md %}#folder-admin) | [Folder Mover]({% link cockroachcloud/authorization.md %}#folder-mover) | +|---|-------------|-------------|------------------|------------------|------------------|-------------------|----------------|--------------------|------------------|----------------|----------------|----------------| +| **User/Access Management** | | | | | | | | | | | | +| Assign and revoke roles | — | ✓ | — | — | — | — | ✓ | — | — | — | — | — | +| Assign {{ site.data.products.cloud }} user and service account roles | — | — | — | — | — | — | ✓ | — | — | — | — | — | +| Manage SQL users | — | — | — | — | — | — | ✓ | — | — | — | — | — | +| Manage {{ site.data.products.cloud }} users and service accounts | — | ✓ | — | — | — | — | ✓ | — | — | — | — | — | +| Apply roles at the [folder]({% link cockroachcloud/folders.md %}) scope | — | — | — | — | — | — | — | — | — | — | ✓ | — | +| **Cluster & Infrastructure** | | | | | | | | | | | | +| Create cluster or [private cluster]({% link cockroachcloud/private-clusters.md %}) | — | — | — | — | ✓ | — | — | — | — | — | — | — | +| Create / edit / delete cluster | — | — | — | — | — | — | ✓ | — | — | — | — | — | +| Edit / delete clusters created by this user | — | — | — | — | ✓ | — | — | — | — | — | — | — | +| Create / delete / manage [folders]({% link cockroachcloud/folders.md %}) | — | — | — | — | — | — | — | — | — | — | ✓ | — | +| Move cluster between [folders]({% link cockroachcloud/folders.md %}) | — | — | — | — | — | — | — | — | — | — | — | ✓ | +| Scale nodes | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| Upgrade CockroachDB | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| Configure [maintenance windows]({% link cockroachcloud/advanced-cluster-management.md %}#set-a-maintenance-window) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| Use the [{{ site.data.products.cloud }} Terraform provider]({% link cockroachcloud/provision-a-cluster-with-terraform.md %}) | — | — | — | — | ✓ | — | ✓ | — | — | — | — | — | +| **Monitoring & Observability** | | | | | | | | | | | | +| View cluster details | — | — | — | — | — | — | — | ✓ | — | — | — | — | +| View [audit logs]({% link cockroachcloud/cloud-org-audit-logs.md %}) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| View [insights]({% link cockroachcloud/insights-page.md %}) | — | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | +| View [jobs]({% link cockroachcloud/jobs-page.md %}) | — | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | +| View [sql activity]({% link cockroachcloud/statements-page.md %}) | — | — | — | — | — | ✓ | ✓ | — | ✓ | — | — | — | +| View [metrics]({% link cockroachcloud/metrics.md %}) | — | — | — | — | — | ✓ | ✓ | — | — | ✓ | — | — | +| Send [test alerts]({% link cockroachcloud/alerts-page.md %}#send-a-test-alert) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| Access [DB console]({% link cockroachcloud/network-authorization.md %}#db-console) | — | — | — | — | — | ✓ | ✓ | ✓ | — | — | — | — | +| **Security** | | | | | | | | | | | | +| Configure [cluster SSO]({% link cockroachcloud/cloud-sso-sql.md %}) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| Manage [egress perimeter controls]({% link cockroachcloud/egress-perimeter-controls.md %}) | — | — | — | — | — | — | ✓ | — | — | — | — | — | +| Manage [network authorization]({% link cockroachcloud/network-authorization.md %}) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| View PCI status | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| **Database & Data** | | | | | | | | | | | | +| Manage databases | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| View / restore [backups]({% link cockroachcloud/backup-and-restore-overview.md %}) | — | — | — | — | — | ✓ | ✓ | — | — | — | — | — | +| **Billing & Licensing** | | | | | | | | | | | | +| Manage [billing]({% link cockroachcloud/billing-management.md %}) | — | — | ✓ | — | — | — | — | — | — | — | — | — | +| View [billing]({% link cockroachcloud/billing-management.md %}) details | — | — | ✓ | ✓ | — | — | — | — | — | — | — | — | +| Manage [email alerts]({% link cockroachcloud/alerts-page.md %}#configure-alerts) | — | ✓ | — | — | — | — | — | — | — | — | — | — | +| Manage CockroachDB [Self-Hosted cluster licenses]({% link {{ site.current_cloud_version }}/licensing-faqs.md %}#obtain-a-license) | — | ✓ | — | — | — | — | — | — | — | — | — | — |
@@ -48,7 +49,7 @@ Some roles can be assigned to users at specific levels of scope to provide more | **Scope level** | **Description** | **Applicable roles** | |---|---|---| -| `Organization` | Applies to the entire CockroachDB {{ site.data.products.cloud }} organization, including all clusters and folders | `Cluster Operator`, `Cluster Admin`, `Cluster Creator`, `Cluster Developer`, `Cluster Monitor`, `Metrics Viewer`, `Billing Coordinator`, `Organization Admin`, `Folder Admin`, `Folder Mover` | +| `Organization` | Applies to the entire CockroachDB {{ site.data.products.cloud }} organization, including all clusters and folders | `Cluster Operator`, `Cluster Admin`, `Cluster Creator`, `Cluster Developer`, `Cluster Monitor`, `Metrics Viewer`, `Billing Coordinator`, `Billing Viewer`, `Organization Admin`, `Folder Admin`, `Folder Mover` | | `Folder` | Applies to clusters within a specific [folder]({% link cockroachcloud/folders.md %}). Only available as a selectable scope if folders have been created within the organization by a user with the `Folder Admin` role | `Cluster Operator`, `Cluster Admin`, `Cluster Creator`, `Cluster Developer`, `Cluster Monitor`, `Metrics Viewer`, `Folder Admin`, `Folder Mover` | | `Cluster` | Applies to a specific cluster | `Cluster Operator`, `Cluster Admin`, `Cluster Developer`, `Cluster Monitor`, `Metrics Viewer` | diff --git a/src/current/cockroachcloud/authorization.md b/src/current/cockroachcloud/authorization.md index befe7c2b2ec..7dc324d97d7 100644 --- a/src/current/cockroachcloud/authorization.md +++ b/src/current/cockroachcloud/authorization.md @@ -66,7 +66,11 @@ This role can be assigned only at the organization scope. ### Billing Coordinator -The **Billing Coordinator** role allows users to [manage billing for that organization]({% link cockroachcloud/billing-management.md %}) through the CockroachDB {{ site.data.products.cloud }} console billing page at [`https://cockroachlabs.cloud/billing/overview`](https://cockroachlabs.cloud/billing/overview). +The **Billing Coordinator** role allows users to [manage and view billing details, invoices, and usage for that organization]({% link cockroachcloud/billing-management.md %}) through the CockroachDB {{ site.data.products.cloud }} console billing page at [`https://cockroachlabs.cloud/billing/overview`](https://cockroachlabs.cloud/billing/overview). + +### Billing Viewer + +The **Billing Viewer** role allows users to [view billing details, invoices, and usage for that organization]({% link cockroachcloud/billing-management.md %}) through the CockroachDB {{ site.data.products.cloud }} console billing page at [`https://cockroachlabs.cloud/billing/overview`](https://cockroachlabs.cloud/billing/overview). ### Cluster Operator diff --git a/src/current/cockroachcloud/billing-management.md b/src/current/cockroachcloud/billing-management.md index dca2aeba554..7ab6126b121 100644 --- a/src/current/cockroachcloud/billing-management.md +++ b/src/current/cockroachcloud/billing-management.md @@ -5,7 +5,11 @@ toc: true docs_area: --- -The **Billing** page contains an overview of your charges and the payment details on file for your CockroachDB {{ site.data.products.cloud }} organization. To view the **Billing** page, [log in](https://cockroachlabs.cloud/) and click **Billing**. +The **Billing** page contains an overview of your charges and the payment details on file for your CockroachDB {{ site.data.products.cloud }} organization. + +## View billing for an organization + +Users with the [Billing Coordinator]({% link cockroachcloud/authorization.md %}#billing-coordinator) or [Billing Viewer]({% link cockroachcloud/authorization.md %}#billing-viewer) role can view billing details, invoices, and usage for the organization. To view the **Billing** page, [log in](https://cockroachlabs.cloud/) and click **Billing**. ## Set up billing for an organization