📄️ Accounts
Accounts are sub-divisions within an organization (e.g., departments, projects, environments). Users and service accounts belong to specific accounts.
📄️ Groups
Groups are collections of users and service accounts with shared permissions. Groups simplify permission management by attaching policies to groups rather than individual principals.
📄️ API Resources
Complete reference for all PDaaS API resources.
📄️ Organizations
Organizations are the top-level container for all resources in PDaaS. Each organization is completely isolated from others.
📄️ Policies
Policies define permissions using AWS IAM-style syntax with Action, Resource, Effect, and Condition. Policies can be attached to groups or directly to users/service accounts.
📄️ Service Accounts
Service accounts are non-human actors for programmatic API access. They authenticate using HMAC signatures with API keys.
📄️ Users
Users are human actors who can authenticate and access resources. Users can belong to multiple accounts with different permissions.