Device is an automation identity inside an instance.
- Avoid embedding personal user API keys into scripts or services.
- Keep audit trail separated from human user actions.
- Delegate minimum required permissions to automation.
¶ Ownership and membership
- A device can be associated with user profile roles and group roles.
- This enables shared ownership and controlled management.
- Devices use individual API keys for JSON-RPC and related integrations.
- Key-level restrictions can further reduce effective permissions.
- Device permissions are evaluated separately from user permissions.
- Devices do not use user-only instance permission extensions.
- Effective rights are primarily derived from project/object structure/object scope plus defaults.
See also: