From a6f9e3f1cd44293688d728b19e524d7d4ca6fdf9 Mon Sep 17 00:00:00 2001 From: Stan Silvert Date: Fri, 3 Jun 2016 14:52:04 -0400 Subject: [PATCH] Minor changes to admin console permissions chapter. --- topics/admin-console-permissions.adoc | 4 ++-- topics/admin-console-permissions/master-realm.adoc | 6 +++--- topics/admin-console-permissions/per-realm.adoc | 4 ++-- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/topics/admin-console-permissions.adoc b/topics/admin-console-permissions.adoc index 4dd806f9d1..df1e5a8d00 100755 --- a/topics/admin-console-permissions.adoc +++ b/topics/admin-console-permissions.adoc @@ -2,6 +2,6 @@ == Admin Console Access Control and Permissions -Each realm created on the {{book.project.name}} has a dedicated Admin Console from which that realm can be managed from. +Each realm created on the {{book.project.name}} has a dedicated Admin Console from which that realm can be managed. The `master` realm is a special realm that allows admins to manage more than one realm on the system. You can also -define fine-grain access to users in different realms to manage the server. This chapter goes over all the scenarios for this. +define fine-grained access to users in different realms to manage the server. This chapter goes over all the scenarios for this. diff --git a/topics/admin-console-permissions/master-realm.adoc b/topics/admin-console-permissions/master-realm.adoc index d8d5fac60a..812359a0be 100755 --- a/topics/admin-console-permissions/master-realm.adoc +++ b/topics/admin-console-permissions/master-realm.adoc @@ -1,7 +1,7 @@ === Master Realm Access Control -The `master` realm in {{book.project.name}} is a special realm and treated differently that other realms. +The `master` realm in {{book.project.name}} is a special realm and treated differently than other realms. Users in the {{book.project.name}} `master` realm can be granted permission to manage zero or more realms that are deployed on the {{book.project.name}} server. When a realm is created, {{book.project.name}} automatically creates various roles that grant fine-grain permissions to access that new realm. Access to The Admin Console and Admin REST endpoints can be controlled by mapping these roles to users in the `master` realm. @@ -16,7 +16,7 @@ These are: * create-realm Users with the `admin` role are super users and have full access to manage any realm on the server. Users with the `create-realm` role -are allowed to create new realms. Any new realm they create they will be granted full access to. +are allowed to create new realms. They will be granted full access to any new realm they create. ==== Realm Specific Roles @@ -42,6 +42,6 @@ The roles available are: * manage-identity-providers * impersonation -Assign the roles you want to your users and they will only be able to use that specific part of the administration console +Assign the roles you want to your users and they will only be able to use that specific part of the administration console. diff --git a/topics/admin-console-permissions/per-realm.adoc b/topics/admin-console-permissions/per-realm.adoc index aff49f3616..6189614c89 100755 --- a/topics/admin-console-permissions/per-realm.adoc +++ b/topics/admin-console-permissions/per-realm.adoc @@ -6,7 +6,7 @@ Each realm has a dedicated Admin Console that can be accessed by going to the ur Users within that realm can be granted realm management permissions by assigning specific user role mappings. Each realm has a built-in client called `realm-management`. You can view this client by going to the -`Clients` left menu item of your realm. This client define client-level roles that specify permissions that can be granted to manage the realm. +`Clients` left menu item of your realm. This client defines client-level roles that specify permissions that can be granted to manage the realm. * view-realm * view-users @@ -23,5 +23,5 @@ Each realm has a built-in client called `realm-management`. You can view this c * manage-identity-providers * impersonation -Assign the roles you want to your users and they will only be able to use that specific part of the administration console +Assign the roles you want to your users and they will only be able to use that specific part of the administration console.