Access control documentation: Administrator example role

Administrators usually have access to the server where Gerrit is running, and are therefore generally granted most if not all permissions the server can offer. Change-Id: Iac25a93c0bec3b3616a34b3e47a19c104fbdbcfd Signed-off-by: Fredrik Luthander <fredrik.luthander@sonymobile.com>
author: Fredrik Luthander <fredrik.luthander@sonymobile.com> 2012-03-22 17:29:39 +0100
committer: Gustaf Lundh <gustaf.lundh@sonymobile.com> 2012-03-29 17:36:36 +0200
commit: 0ce7cc40fc26736cf18bf8f4432126e2fa770b60 (patch)
tree: e6549b9466eb5b58e37beb5d65cbe4e7246c626e
parent: 7030557f9b124ce944833b08d994c21f20541aa7 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/Documentation/access-control.txt b/Documentation/access-control.txt
index 13b301b58d..013c3eb900 100644
--- a/Documentation/access-control.txt
+++ b/Documentation/access-control.txt
@@ -932,6 +932,23 @@ Optional access right to grant:
 
 * <<category_owner,`Owner`>> in the gits they mostly work with.
 
+[[examples_administrator]]
+Administrator
+~~~~~~~~~~~~~
+
+The administrator role is the most powerful role known in the Gerrit universe.
+This role may grant itself (or others) any access right, and it already has
+all capabilities granted as well.  By default the
+<<administrators,`Administrators` group>> is the group that has this role.
+
+Mandatory access rights:
+
+* <<capability_administrateServer,The `Administrate Server` capability>>
+
+Suggested access rights to grant:
+
+* <<examples_project-owner,Project owner rights>>
+
 
 [[conversion_table]]
 Conversion table from 2.1.x series to 2.2.x series
author	Fredrik Luthander <fredrik.luthander@sonymobile.com>	2012-03-22 17:29:39 +0100
committer	Gustaf Lundh <gustaf.lundh@sonymobile.com>	2012-03-29 17:36:36 +0200
commit	0ce7cc40fc26736cf18bf8f4432126e2fa770b60 (patch)
tree	e6549b9466eb5b58e37beb5d65cbe4e7246c626e
parent	7030557f9b124ce944833b08d994c21f20541aa7 (diff)