Privileges Required to Manage Snapshots
In the Coveo Administration Console, what you can do in a page, subpage, or panel is determined by the privileges you have been granted. These privileges also apply to the resource snapshot feature, so that it cannot be used for privilege escalation. In other words, you can’t leverage the snapshot feature to view or edit the configuration of a resource if your privileges don’t allow you to do so.
Your privilege set allows you to view all query pipelines in your organization, but you can only edit pipeline
ABC. As a result, you can create a snapshot that contains all these pipelines, but you can’t apply this snapshot to an organization since you’re not allowed to edit all pipelines.
The following table indicates the privileges required to perform actions relative to resource snapshots. As explained above, one can’t leverage the snapshot feature to view or edit the configuration of a resource if their privilege set does not allow them to do so. See Privilege Management for details on how privileges work and Privilege Reference for further information on each privilege.
|Action||Service - Domain||Required access level|
|Create a snapshot of an organization||Organization - Snapshot||Edit|
|All domains corresponding to the resources to include in the snapshot||View|
|Create a snapshot from JSON or ZIP||Organization - Snapshot||Edit|
|Send a snapshot to a destination organization||Organization - Snapshot
(in both the origin and the destination organization)
|All domains corresponding to the resources (from the origin organization) in the snapshot||View|
|Validate a snapshot||Organization - Snapshot||View|
|Organization - Link||View|
|All domains corresponding to the resources in the snapshot||View|
|Synchronize a snapshot||Organization - Snapshot||View|
|Organization - Link||Edit|
|Apply a snapshot||Organization - Snapshot||Edit|
|All domains corresponding to the resources in the snapshot||Edit|
|Delete a snapshot||Organization - Snapshot||Edit|
Read on how Coveo forms associations between resources to determine how to apply your resource snapshots. This article is recommended for advanced users only.