Permission Overview
Matia’s permission system follows a hierarchical model where each role level inherits all permissions from the levels below it:
- Viewer: Base read-only access to view resources and issues
- Editor: All Viewer permissions + creation, modification, and management capabilities
- Admin: All Editor permissions + deletion and advanced administrative functions
Any permission not explicitly mentioned in this reference is available to all authenticated users by default.
Quick Reference Matrix
Legend: ✅ Has Permission | ⬆️ Inherited from Lower Role | ❌ No Permission
Integrations (ETL/Reverse ETL) Permissions
| Permission | Viewer | Editor | Admin |
|---|
| View Integrations Section | ✅ | ⬆️ | ⬆️ |
| View Integration Issues | ✅ | ⬆️ | ⬆️ |
| Create Integration | ❌ | ✅ | ⬆️ |
| Create Asset | ❌ | ✅ | ⬆️ |
| Edit Integration Issues (severity/status) | ❌ | ✅ | ⬆️ |
| Trigger Sync | ❌ | ✅ | ⬆️ |
| Enable/Disable Integration | ❌ | ✅ | ⬆️ |
| Integration Settings | ❌ | ✅ | ⬆️ |
| Manage Tags | ❌ | ✅ | ⬆️ |
| Integration Schema Edits | ❌ | ✅ | ⬆️ |
| Integration Name Edit | ❌ | ✅ | ⬆️ |
| Trigger Full Re-Sync | ❌ | ✅ | ⬆️ |
| Create and edit notificaiton rules | ❌ | ✅ | ⬆️ |
| Delete Integration | ❌ | ❌ | ✅ |
| View activity logs and access history | ❌ | ❌ | ✅ |
Monitor (Data Observability) Permissions
| Permission | Viewer | Editor | Admin |
|---|
| View Monitors | ✅ | ⬆️ | ⬆️ |
| View Observability Issues | ✅ | ⬆️ | ⬆️ |
| Create Custom Monitor | ❌ | ✅ | ⬆️ |
| Edit Observability Issues (severity/status) | ❌ | ✅ | ⬆️ |
| Trigger Monitor | ❌ | ✅ | ⬆️ |
| Enable/Disable Monitor | ❌ | ✅ | ⬆️ |
| Update Monitor Settings | ❌ | ✅ | ⬆️ |
| Monitor Name Edit | ❌ | ✅ | ⬆️ |
| Manage Tags | ❌ | ✅ | ⬆️ |
| Create and edit notificaiton rules | ❌ | ✅ | ⬆️ |
| Delete Monitor | ❌ | ❌ | ✅ |
| View activity logs and access history | ❌ | ❌ | ✅ |
Catalog (Data Governance) Permissions
| Permission | Viewer | Editor | Admin |
|---|
| View Catalog | ✅ | ⬆️ | ⬆️ |
| View Lineage | ✅ | ⬆️ | ⬆️ |
| Create Asset | ❌ | ✅ | ⬆️ |
| Edit Catalog Issues (severity/status) | ❌ | ✅ | ⬆️ |
| Update Connection Config | ❌ | ✅ | ⬆️ |
| Update Description | ❌ | ✅ | ⬆️ |
| Manage Owners | ❌ | ✅ | ⬆️ |
| Manage Tags & Certificates | ❌ | ✅ | ⬆️ |
| Trigger Extract Metadata | ❌ | ✅ | ⬆️ |
| Create and edit notificaiton rules | ❌ | ✅ | ⬆️ |
| Delete Asset | ❌ | ❌ | ✅ |
| View activity logs and access history | ❌ | ❌ | ✅ |
Global vs Product-Specific Roles
Global Roles
Apply permissions across all three modules (Integrations, Monitors, Catalog):
Global Admin
- Inherits Admin permissions for Integrations, Monitors, and Catalog
- Can delete integrations, monitors, and catalog assets
- Full platform administration capabilities
- User management and system configuration access
Global Editor
- Inherits Editor permissions for Integrations, Monitors, and Catalog
- Can create, modify, and manage resources across all modules
- Cannot delete any resources (admin-only capability)
- No platform administration or user management access
Global Viewer
- Inherits Viewer permissions for Integrations, Monitors, and Catalog
- Read-only access to view all resources and issues
- Cannot create, modify, or delete any resources
- No administrative capabilities
Product-Specific Roles
Apply permissions to individual modules only:
Integrations Admin/Editor/Viewer
- Permissions apply only to ETL/Reverse ETL functionality
- No access to Monitors or Catalog unless separately assigned
Monitor Admin/Editor/Viewer
- Permissions apply only to Data Observability functionality
- No access to Integrations or Catalog unless separately assigned
Catalog Admin/Editor/Viewer
- Permissions apply only to Data Governance functionality
- No access to Integrations or Monitors unless separately assigned
Detailed Permission Descriptions
Integrations Module Permissions
Viewer Permissions (Base Level)
- View Integrations Section: Access to browse all ETL/Reverse ETL Integrations and integration details
- View Integration Issues: See data quality problems, sync failures, and sync alerts
Editor Permissions (Builds on Viewer)
- Create Integration: Set up new ETL/Reverse ETL pipelines and data connections
- Create Asset: Generate new data assets through integration processes
- Edit Integration Issues: Modify severity levels and status of data sync problems
- Trigger Sync: Manually start data synchronization processes
- Enable/Disable: Turn integrations on/off without deleting them
- Integration Settings: Modify configuration parameters and sync options
- Tags: Add, remove, and modify organizational tags for integrations
- Integration Schema Edits: Modify data transformation and mapping rules
- Integration Name Edit: Rename integrations for better organization
- Trigger Full Re-Sync: Force complete data refresh from source systems
Admin Permissions (Builds on Editor)
- Delete Integration: Permanently remove integrations and all associated data
Monitor Module Permissions
Viewer Permissions (Base Level)
- View Monitors: Access to see all data quality monitors and their status
- View Observability Issues: Browse data quality alerts, anomalies, and incidents
Editor Permissions (Builds on Viewer)
- Create Custom Monitor: Set up new data quality checks and anomaly detection rules
- Edit Observability Issues: Update severity, status, and resolution details for data issues
- Trigger Monitor: Manually execute monitoring checks outside of scheduled runs
- Enable/Disable: Turn monitors on/off without deleting them
- Update Monitor Settings: Modify thresholds, check frequency, and alert conditions
- Monitor Name: Rename monitors for better organization and clarity
- Tags: Add, remove, and modify organizational tags for monitors
Admin Permissions (Builds on Editor)
- Delete Monitor: Permanently remove monitors and their historical data
Catalog Module Permissions
Viewer Permissions (Base Level)
This role is included by default for all Matia users.
- View Catalog: Browse all data assets, metadata, and documentation
Editor Permissions (Builds on Viewer)
- Create Asset: Add new data assets to the catalog
- Edit Catalog Issues: Update severity and status of data governance issues
- Update Connection Config: Modify how catalog connects to and extracts from data sources
- Update Description: Edit asset descriptions, documentation, and usage guidelines
- Owners: Assign and modify data asset ownership and stewardship
- Tags & Certificates: Manage classification tags and data quality certifications
- Trigger Extract Metadata: Manually refresh metadata from connected systems
Admin Permissions (Builds on Editor)
- Delete Asset: Permanently remove assets from the catalog
Universal Permissions
The following capabilities are available to all authenticated users regardless of role assignment:
- View Matia main dashboard
- Access to main Matia interface and navigation menus
- Access to personal user profile
- View Notifications page
Basic Discovery
- Search functionality across all accessible resources
- Filter and sort capabilities within permitted content
- Set notification preferences and alert settings
