Skip to main content

Configure registry access

Registry admins can limit who can access a registry by navigating to a registry's settings and assigning a user's role to Admin, Member, or Viewer. Users can have different roles in different registries. For example, a user can have a view role in "Registry A" and a member role in the "Registry B".

note

Only registry admins can restrict visibility, configure user roles, or remove users from registries in an organization.

Registry roles permissions

A user within an organization can have different roles, and therefore permissions, for each registry in their organization.

W&B role types

W&B has three different types of roles: Organization roles, team roles, and registry roles.

Your role in a team has no impact or relationship on your role in any registry.

The proceeding table lists the different roles a user can have and their permissions:

PermissionPermission GroupViewerMemberAdminOwner
View a collection’s detailsReadXXXX
View a linked artifact’s detailsReadXXXX
Usage: Consume an artifact in a registry with use_artifactReadXXXX
Download a linked artifactReadXXXX
Download files from an artifact’s file viewerReadXXXX
Search a registryReadXXXX
View a registry’s settings and user listReadXXXX
Create a new automation for a collectionCreateXXX
Turn on Slack notifications for new version being addedCreateXXX
Create a new collectionCreateXXX
Create a new custom registryCreateXXX
Edit collection card (description)UpdateXXX
Edit linked artifact descriptionUpdateXXX
Add or delete a collection’s tagUpdateXXX
Add or delete an alias from a linked artifactUpdateXXX
Link a new artifactUpdateXXX
Edit allowed types list for a registryUpdateXXX
Edit custom registry nameUpdateXXX
Delete a collectionDeleteXXX
Delete an automationDeleteXXX
Unlink an artifact from a registryDeleteXXX
Edit accepted artifact types for a registryAdminXX
Change registry visibility (Organization or Restricted)AdminXX
Add users to a registryAdminXX
Assign or change a user's role in a registryAdminXX

Configure user roles in a registry

  1. Navigate to the Registry App in the W&B App UI.
  2. Select the registry you want to configure.
  3. Click on the gear icon on the upper right hand corner.
  4. Scroll to the Registry members and roles section.
  5. Within the Member field, search for the user you want to edit permissions for.
  6. Click on the user's role within the Registry role column.
  7. From the dropdown, select the role you want to assign to the user.

Remove a user from a registry

  1. Navigate to the Registry App in the W&B App UI.
  2. Select a core or custom registry.
  3. Click on the gear icon on the upper right hand corner.
  4. Scroll to the Registry members and roles section and type in the username of the member you want to remove.
  5. Click the Delete button.

Registry visibility types

There are two registry visibility types: restricted or organization visibility. The following table describes who has access to the registry by default:

VisibilityDescriptionDefault roleExample
OrganizationEveryone in the org can access the registry.By default, organization administrators are an admin for the registry. All other users are a viewer in the registry by default.Core registry
RestrictedOnly invited org members can access the registry.The user who created the restricted registry is the only user in the registry by default, and is the organization's owner.Custom registry or core registry

Restrict visibility to a registry

Restrict who can view and access a custom registry. You can restrict visibility to a registry when you create a custom registry or after you create a custom registry. A custom registry can have either restricted or organization visibility. For more information on registry visibilities, see Registry visibility types.

The following steps describe how to restrict the visibility of a custom registry that already exists:

  1. Navigate to the Registry App in the W&B App UI.
  2. Select a registry.
  3. Click on the gear icon on the upper right hand corner.
  4. From the Registry visibility dropdown, select the desired registry visibility.

Continue if you select Restricted visibility:

  1. Add members of your organization that you want to have access to this registry. Scroll to the Registry members and roles section and click on the Add member button.
  2. Within the Member field, add the email or username of the member you want to add.
  3. Click Add new member.

Was this page helpful?👍👎