Stay organized with collections
Save and categorize content based on your preferences.
App Hub has the following Identity and Access Management (IAM) roles:
App Hub Admin (roles/apphub.admin)
App Hub Editor (roles/apphub.editor)
App Hub Viewer (roles/apphub.viewer)
App Hub roles
The following table describes roles and their typical responsibilities.
Role
Description
Purpose
App Hub Admin
Ability to attach service project(s) to the host project, create
application, update application attributes, register services and
workloads, update service and workload attributes, and delegate
application control to App Hub Editor.
To manage the full lifecycle of a host project and attach the service
project(s)
Typically platform admins, who generally have administrative
permissions and full visibility of the end-to-end architecture
App Hub Editor
Ability to create and update applications; register and unregister
services and workloads; update attributes.
To scale the capability to create, update or delete services and
workloads, so that it eases the effort of Platform Admins
Typically an application operator who has a good understanding of the
deployments
App Hub Viewer
Ability to view services, workloads and applications, and their
attributes.
To enable basic visibility across services, workloads and
applications, and their dependencies
Typically most personnel(s) in the organization. To get the most
value, all App Hub users should be granted this role
App Hub permissions
The following table lists the App Hub IAM roles
and its permissions.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-11 UTC."],[[["\u003cp\u003eApp Hub offers three distinct IAM roles: Admin, Editor, and Viewer, each designed for different levels of management and visibility.\u003c/p\u003e\n"],["\u003cp\u003eThe App Hub Admin role has full control over the host project lifecycle, service project attachments, application creation, and the ability to delegate application control.\u003c/p\u003e\n"],["\u003cp\u003eThe App Hub Editor role is focused on creating and updating applications, registering services and workloads, and modifying attributes.\u003c/p\u003e\n"],["\u003cp\u003eThe App Hub Viewer role enables the basic ability to see all services, workloads, applications, and their attributes across the organization.\u003c/p\u003e\n"],["\u003cp\u003eApp Hub roles contain a wide variety of permissions, which allows control over service projects attachments, applications, services, workloads, and long running operations.\u003c/p\u003e\n"]]],[],null,[]]