DataStax Astra Developer Hub

Welcome to the DataStax Astra Developer Hub. You'll find comprehensive guides and documentation to help you start working with DataStax Astra as quickly as possible. Use the included APIs to create, modify, and terminate databases, and interact with the databases you create. Let's do it!

Astra Docs      API Reference      CQL for Astra

Invite users to an organization

Invite users to join your organization and provide them with access based on the selected role.

Procedure

  1. From your Astra Dashboard, select Invite Users.
  2. On the Invite Users page, select the User Role for the user(s) you are inviting.
  3. Enter the email addresses for the users you want to invite for that specific User Role. Separate the email addresses with commas, spaces, or line breaks.
  4. Select Invite to send email invitations to the users at their email address.

Invited users are listed as pending until they accept the invitation to join your organization.

Roles quick reference

Permissions Legend

  • DDL - Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Write DB Access - Modify and describe keyspaces and tables within the database
  • Read DB Access - Select and describe keyspaces and tables within the database
  • UI RO Access - View databases in organization
  • CQL API - CQL access based on database access permissions
  • GraphQL API - GraphQL API access based on database access permissions
  • REST API - REST and Document API access based on database access permissions
  • Billing R/W - View and modify billing
  • DB Lifecycle - Create, terminate, and expand database
  • User Mgmt - View and modify users

Role

DDL

Write DB Access

Read DB Access

UI RO Access

CQL API

GraphQL API

REST API

Billing R/W

DB Lifecycle

User Mgmt

Admin User

X

X

X

X

X

X

X

R/W User

X

X

X

X

X

X

RO User

X

X

X

X

X

Admin Svc Acct

X

X

X

X

X

X

R/W Svc Acct

X

X

X

X

X

RO Svc Acct

X

X

X

X

API Admin User

X

X

X

X

X

X

API R/W User

X

X

X

X

X

API RO User

X

X

X

X

API Admin Svc Acct

X

X

X

X

X

API R/W Svc Acct

X

X

X

X

API RO Svc Acct

X

X

X

Organization Administrator

X

X

X

X

Database Administrator

X

X

X

UI View Only

X

Billing Admin

X

X

User roles

You can add users to your organization with a defined role. Each role allows for unique permissions as defined below:

Admin User

  • Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

R/W User

  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

RO User

  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

Admin Svc Acct

  • Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

R/W Svc Acct

  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

RO Svc Acct

  • Select and describe keyspaces and tables within the database
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API Admin User

  • Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API R/W User

  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API RO User

  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API Admin Svc Acct

  • Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API R/W Svc Acct

  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

API RO Svc Acct

  • Select and describe keyspaces and tables within the database
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

Organization Administrator

  • View billing
  • Modify billing
  • View users in an organization
  • Modify users in an organization
  • View databases in organization
  • Create, terminate, and expand database
  • VPC peering for database

Database Administrator

  • View databases in organization
  • Create, terminate, and expand database
  • VPC peering for database

UI View Only

  • View databases in organization

Billing Admin

  • View databases in organization
  • View billing
  • Modify billing

Pre-existing user roles

For Astra users who had existing permissions set before December 9, 2020, the following roles replace the existing roles:

Pre-exisiting roles

New role

Permissions

Organization Administrator

Organization Administrator

  • View billing
  • Modify billing
  • View users in an organization
  • Modify users in an organization
  • View databases in organization
  • Create, terminate, and expand database
  • VPC peering for database

Database Administrator

Database Administrator

  • View databases in organization
  • Create, terminate, and expand database
  • VPC peering for database

Database Access

Admin User

  • Schema changes, including select, grant, modify, describe, authorize, drop for the tables and/or keyspaces for which the permission is granted
  • Modify and describe keyspaces and tables within the database
  • Select and describe keyspaces and tables within the database
  • View databases in organization
  • CQL access based on database access permissions
  • GraphQL API access based on database access permissions
  • REST and Document API access based on database access permissions

Updated 8 days ago


Invite users to an organization


Invite users to join your organization and provide them with access based on the selected role.

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.