Access levels required by Helix Server commands
The following table lists the minimum access level required to run each
command. For example, because p4 add
requires at
least open
access, you can run p4 add
if
you have open
, write
, admin
, or
super
access. See p4 protect in Helix Core Command-Line (P4) Reference.
Commands that list files, such as p4 describe
, list
only those files to which the user has at least list
access.
Some commands (for example, p4 change
, when you edit
a previously submitted changelist) take a -f
flag that can
only be used by
Helix Server
superusers. See
Forcing operations with the -f flag
for details.
To understand the difference between standard users, operator users, and service users, see Types of users in Helix Core Command-Line (P4) Reference.
Command | Access Level | Notes |
---|---|---|
|
||
|
An operator user can use all options except An operator user with super can use all options. |
|
aliases
|
none | |
|
||
|
||
|
The |
|
bgtask
|
super
|
|
|
The |
|
|
||
|
||
|
The |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
check-permission (graph)
|
admin
|
|
|
||
|
The |
|
client (graph)
|
||
|
||
|
On the remote server. |
|
|
Also available to an operator user. |
|
|
list access to the source files; |
|
|
list access to at least one file in any depot is
required to view an existing counter’s value; Also available to an operator user, including |
|
|
Also available to an operator user. | |
|
||
|
Also available to a service user. | |
|
Also available to an operator user. | |
|
Also available to an operator user. | |
|
||
delete (graph)
|
write protection on path, write-ref permission on depot or repo. |
|
|
The |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. super for Also available to an operator user. |
|
|
The |
|
describe (graph)
|
list
|
|
|
or list to use the -As option. |
|
diff (graph)
|
||
|
or list to use the -As option. |
|
diff2 (graph)
|
list protection, read permission |
|
|
||
dirs (graph)
|
||
|
Also available to an operator user. | |
|
||
edit (graph)
|
||
|
Also available to a service user. | |
extension
|
super
|
The super user can delegate some permissions to admins and users. |
failback
|
super
|
|
failover
|
super
|
|
|
||
|
||
filelog (graph)
|
list protection, read permission |
|
|
||
files (graph)
|
list protection, read permission |
|
|
||
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
|
||
|
||
fstat (graph)
|
||
grant-permission (graph)
|
super
|
super from p4 protect applies to all repos and graph depots
a user assigned to be |
graph gc (graph)
|
super
|
|
graph lfs-lock (graph)
|
||
graph lfs-locks (graph)
|
||
graph lfs-unlock (graph)
|
||
graph log (graph)
|
read though p4 grant-permission |
|
graph purge-refhist (graph)
|
Either repo admin , based on p4 grant-permission , or the owner of the repo. |
|
graph rebase (graph)
|
list protection, force-push permission |
|
graph recompute-refcnts (graph)
|
super
|
|
graph show-ref (graph)
|
super
|
|
graph tag (graph)
|
read to see the tag,
write-ref to overwrite the tag,
delete-ref to delete the tag, create-ref to create a tag |
|
graph tags (graph)
|
read on the repos with tags |
|
graph verify (graph)
|
list
|
|
|
||
|
The The The |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
|
list protection, read permission |
|
have (graph)
|
||
heartbeat
|
super
|
Also available to an operator user. |
|
||
help-graph (graph)
|
list
|
|
|
||
|
Also available to a service user. |
|
|
||
|
The user must have |
|
|
||
|
||
|
||
|
The The |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. Also available to an operator user. |
|
|
The |
|
|
p4 journalcopy -l is also available to an operator user. |
|
|
Also available to an operator user. | |
super |
||
|
list access to at least one file in any depot is
required to view an existing key’s value; |
|
|
admin access is required if the
|
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. The |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
|
||
|
||
|
||
|
||
|
The |
|
|
||
|
||
lock (graph)
|
list protection, read permission |
|
|
Also available to an operator user. |
|
|
Also available to an operator user. | |
|
||
|
Also available to an operator user and a service user | |
login2
|
list
|
|
|
Also available to an operator user and a service user. An operator with |
|
|
Also available to an operator user. | |
|
Also available to an operator user. | |
|
Also available to an operator user. | |
|
Also available to an operator user. | |
|
Also available to an operator user. | |
|
||
merge (graph)
|
||
|
super access is required to terminate or clear processes, or to view arguments. Also available to an operator user. |
|
read or write |
read for |
|
|
||
|
||
opened (graph)
|
read protection, read permission |
|
|
Also available to an operator user and a service user. |
|
|
Also available to an operator user. | |
|
||
|
||
print (graph)
|
list protection, read permission |
|
|
list to read, |
|
|
||
|
super access is required to use the
|
|
|
Must be connected to a Helix Proxy. |
|
|
For stream owner. |
|
pubkey (graph)
|
super
|
super to update or delete someone else's pubkey, list to add, update, or delete your own |
pubkeys (graph)
|
list
|
|
|
p4 pull -lj and p4 pull -ls are available to an operator user. |
|
read or write |
read on the local server or |
|
|
||
reconcile (graph)
|
|
|
|
admin access is required to use |
|
open or |
open or |
|
|
||
read or write |
read for |
|
renameclient
|
admin
|
or owner of client workspace |
|
||
|
||
|
||
repo (graph)
|
|
|
repos (graph)
|
read on this repo through p4 grant-permission (graph) |
|
reshelve
|
open
|
|
|
||
resolve (graph)
|
||
|
||
|
||
write or admin |
write or |
|
|
||
revert (graph)
|
list
|
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
revoke-permission (graph)
|
||
|
||
|
super access is required to set the server ID. |
|
|
An operator user can run p4 servers and p4 servers -J |
|
|
||
|
admin access is required to forcibly delete shelved files with p4 shelve -f -d |
|
show-permission (graph)
|
||
show-permissions (graph)
|
||
show-ref (graph)
|
super
|
|
|
||
|
||
storage
|
admin
|
super to use the -U option |
|
admin access is required to use the |
|
streamlog
|
open
|
|
|
||
streamspec
|
admin
|
|
|
||
submit (graph)
|
write
|
write protection on path to submit |
open or |
open to use the |
|
switch (graph)
|
||
|
||
sync (graph)
|
||
|
||
|
||
topology
|
super
|
Also available to an operator user. |
|
||
|
||
|
The |
|
undo
|
open
|
|
|
admin access is required to use |
|
|
The |
|
unlock (graph)
|
|
|
|
||
|
||
|
||
|
||
upgrades
|
super
|
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. The Also available to an operator user and a service user |
|
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. If the |
|
|
Also available to an operator user. | |
|
This command doesn’t operate on specific files. Permission is granted to run the command if the user has the specified access to at least one file in any depot. |
|
|
||
|
||
|