About access permissions on GitHub

Learn about roles, and how you can control who has access to your enterprise's resources and the level of access each person has.

В этой статье

About access permissions on GitHub

Чтобы выполнить какие-либо действия с GitHub, например создание запроса на вытягивание в репозитории или изменение параметров выставления счетов организации, пользователь должен иметь достаточные разрешения для доступа к соответствующей учетной записи или ресурсу. Для управления доступом используются разрешения. Разрешение — это возможность выполнения конкретного действия. Например, возможность удалить проблему является разрешением. Роль — это набор разрешений, которые можно назначить отдельным пользователям или командам.

Roles work differently for different types of accounts. For more information about accounts, see Типы учетных записей GitHub.

Personal accounts

A repository owned by a personal account has two permission levels: the repository owner and collaborators. See Уровни разрешений для репозитория личной учетной записи.

Organization accounts

Organization members can have owner, billing manager, or member roles. Owners have complete administrative access to your organization, while billing managers can manage billing settings. Member is the default role for everyone else. You can manage access permissions for multiple members at a time with teams. For more information, see:

Enterprise accounts

Enterprise owners have ultimate power over the enterprise account and can take every action in the enterprise account. Billing managers can manage your enterprise account's billing settings. Members and outside collaborators of organizations owned by your enterprise account are automatically members of the enterprise account, although they have no access to the enterprise account itself or its settings.

Enterprise owners cannot access organization content or repositories unless they are explicitly granted a role in the organization. However, enterprise owners can manage enterprise settings and policies that impact an organization in the enterprise. For more information, see Роли на предприятии.

If an enterprise uses Enterprise Managed Users, members are provisioned as new personal accounts on GitHub and are fully managed by the identity provider. The управляемые учетные записи пользователей have read-only access to repositories that are not a part of their enterprise and cannot interact with users that are not also members of the enterprise. Within the organizations owned by the enterprise, the управляемые учетные записи пользователей can be granted the same granular access levels available for regular organizations. For more information, see Сведения о Enterprise Managed Users.

Next steps

Next, learn about how you can use rulesets to manage how people interact with your enterprise's repositories. See About rulesets.