Permissions

Permissions control what users can access.

You can grant a permission to one or more roles.
Permissions can apply either to a specific project or to all projects (the projects_root). For example, User A can analyze only a specific project, while User B can analyze all projects in the projects_root.
If User C is invited to a code review but receives a warning that they are unable to view, they do not have the required permissions for that project or file and must be granted the permissions by the Projects root admin.

The following table shows all available permissions.

Permission	Definition	Applies to all projects (the projects_root)	Applies to a specific project
Access source files	Access project source files To control access to source code, you must give users the Access source files permission, set up modules, and configure module permissions.	✓	✓
Access the Web API	Access the Web API, which provides administrators with a scriptable interface to the Klocwork database	✓
Assign role	Assign roles to users on a project Assign roles to groups on a project	✓	✓
Change issue owner	Change the owner of issues on a project	✓	✓
Change issue status	Change the status of issues on a project Includes additional parameter for a list of from–to pairs of status names. Select a pair to give the user permission to change the issue status from one status to the other.	✓	✓
Change project settings	Manage configuration files Configure checkers for the integration build analysis	✓	✓
Change user passwords	(SSO or Basic only) Change user passwords for all users	✓
Create build	Analyze a project	✓	✓
Create CI build	Analyze a project with a continuous integration run	✓	✓
Create project	Create projects	✓
Create stream	Create a stream	✓	✓
Delete build	Delete a build (an analysis run)	✓	✓
Delete CI build	Delete a CI build (a continuous integration run)	✓	✓
Delete project	Delete a project	✓	✓
Delete stream	Delete a stream	✓	✓
Manage project modules	Create, delete, or modify modules for a project	✓	✓
Manage reports	Control which reports are made public for the entire team	✓
Manage roles	Create or delete roles Add permissions to roles	✓
Manage tokens for all users	Create, delete, or modify user tokens for all users	✓
Manage tokens for self	Create, delete, or modify only your own user tokens	✓
Manage user sessions	Log users out of Validate sessions	✓
Manage users	Create or delete users Create or delete groups Add users to groups Remove users from groups	✓
Manage views	Create, delete, or modify views for a project This allows you to make a view public, which enables you to edit shared views. Only the creator of a view can delete it.	✓	✓
Perform cross-project synchronization	Synchronize issue status updates, comments, and the ID of the user who made them across specified projects	✓
Set up auto-delete option	Manage the `auto-delete old builds` flag on the Builds page and set an auto-delete threshold You can also manage the `Do not auto-delete this build` flag or the `keepit` flag for the update_build WebAPI command.	✓	✓
Use local configuration	Use local configuration files on the desktop (changes to local desktop configurations are not shared with the server)	✓	✓