Roles
A role is a set of user permissions to perform operations with Yandex Cloud resources.
There are two types of roles:
-
Primitive roles contain permissions that apply to all types of Yandex Cloud resources. These are roles such as
admin,editor,viewer, andauditor. -
Service roles contain permissions only for a specific type of resource in a particular service. The service role ID is specified in
service.resources.roleformat. For example, thecompute.images.userrole allows you to use images in Yandex Compute Cloud.A service role can be assigned to the resource that the role is intended for or the resource that permissions are inherited from. For example, you can assign the
compute.images.userrole for a folder or cloud, because images inherit permissions from them.
Currently, users are not allowed to create new roles with a custom set of permissions.
Role reference
Starting February 14, 2024, you can find an expanded list of roles for all Yandex Cloud services on the Yandex Cloud role reference page.