Project Roles and Permissions

FlexNet Code Insight 2020 R2

The following table lists the various roles and associated permissions used to manage a given project in Code Insight. The Project Owner assigns the Analyst, Reviewer, and Observer roles to FlexNet Code Insight user and can reassign project ownership. For details about these roles and the procedure for assigning them, see Assigning Project Roles to Users.

Project Roles and Permissions

 

Roles

 

 

Project Owner

Analyst

Reviewer

Observer

Permissions

Notes

 

 

 

 

Manage a project:

Reassign project ownership
Manage project users
Rename project
Move projects in Project Folder Tree
Manage scan settings
Manage inventory review/ remediation settings
Manage Source Control Management (SCM) and Application Lifecycle (ALM) instances

The project creator automatically becomes Project Owner, who can then reassign ownership to another user.

See the previous section, System Roles and Permissions, for information about the Create Project role needed to create projects.

 

 

 

Invoke a scan

 

 

 

Upload codebase

 

 

 

Import/export project data

 

 

 

View project inventory

Any user (not just one with a project role) can view the Project Inventory tab and the associated inventory details.

*

Edit, create, and recall project inventory (Project Inventory tab)

These permissions apply only to the Project Inventory tab. Note the following clarifications about permissions on this tab:

Only Reviewers and the Project Owner can recall inventory.
For a given inventory item, only Reviewers and the Project Owner can update the Notices Text field (on the Notices Text tab) and information on the Notes & Guidance tab (except Detection Notes).
Only Reviewers can set the inventory priority and approve/reject inventory (see the next table entry).
Only Analysts and the Project Owner have access to the Add Item button to create inventory and to the Edit Item button to edit inventory definition properties (such as component, version, selected license, URL, and usage).

 

 

Update inventory priority and approve or reject inventory

Inventory priority is set on the Project Inventory tab and in Analysis Workbench. Inventory is approved or rejected on the Project Inventory tab only.

 

 

 

Access Analysis Workbench

View and analyze the codebase file tree
Edit alerts
Create, edit, and recall inventory and manage custom detection rules
Edit the Notices Text field on the Notices Text tab
Edit the Audit Notes field on the Notes tab

The Project Owner or Analyst can change inventory priority only if also assigned to the Reviewer role (see the previous table entry).

 

 

 

Generate reports

Any user (not just one with a project role) can generate reports.

For a “private” project, the Observer is considered a regular user of the project, restricted to viewing project inventory and generating reports.

*

* The Observer role is available for only projects defined as “Private”. Only Observers, the Project Owner, Analysts, and Reviewers have access to the “Private” project to which they are assigned. The Observer is considered a regular user, restricted to viewing project inventory and generating reports for the “Private Project”.