RBAC phase one

about/pricing-and-account-management.md

@@ -160,6 +160,7 @@ The features included in each [$PRICING_PLAN][pricing-plans] are:
 | Performance insights                                          | ✓                                 | ✓                                              | ✓                                              |
 | Metrics and log exporters	                                    |                                   | ✓                                              | ✓                                              |
 | **Security and compliance**                                   |                                   |                                                |                                                |
+| Role-based access                                             | ✓                                 | ✓                                              | ✓                                              |
 | End-to-end encryption                                         | ✓                                 | ✓                                              | ✓                                              |
 | Private Networking (VPC)                                      | 1 multi-attach VPC	               | Unlimited multi-attach VPCs                    | 	Unlimited multi-attach VPCs                   | 
 | AWS Transit Gateway                                           |                                   | ✓                                              | ✓                                              |

getting-started/run-queries-from-console.md

@@ -258,7 +258,7 @@ To use $SQL_EDITOR:
 [portal-data-mode]: https://console.cloud.timescale.com/dashboard/services?popsql
 [portal-ops-mode]: https://console.cloud.timescale.com/dashboard/services
 [pricing-plan-features]: https://www.timescale.com/pricing#features
-[project-members]: /use-timescale/:currentVersion:/members/
+[project-members]: /use-timescale/:currentVersion:/security/members/
 [query-variables]: https://docs.popsql.com/docs/query-variables
 [read-replica]: /use-timescale/:currentVersion:/ha-replicas/read-scaling/
 [run-popsql]: /getting-started/:currentVersion:/run-queries-from-console/#data-mode

integrations/cloudwatch.md

@@ -33,7 +33,7 @@ tool. You create an exporter on the [project level][projects], in the same AWS r
 
 <ManageDataExporter />
 
-[projects]: /use-timescale/:currentVersion:/members/
+[projects]: /use-timescale/:currentVersion:/security/members/
 [pricing-plan-features]: /about/:currentVersion:/pricing-and-account-management/#features-included-in-each-plan
 [cloudwatch]: https://aws.amazon.com/cloudwatch/
 [cloudwatch-signup]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/GettingSetup.html

integrations/datadog.md

@@ -141,7 +141,7 @@ comprehensive list of [metrics][datadog-postgres-metrics] collected.
 [datadog-monitor-cloud]: /integrations/:currentVersion:/datadog/#monitor-timescale-cloud-service-metrics-with-datadog
 [datadog-agent]: /integrations/:currentVersion:/datadog/#configure-datadog-agent-to-collect-metrics-for-your-timescale-cloud-services
 [datadog-agent-restart]: https://docs.datadoghq.com/agent/configuration/agent-commands/#start-stop-and-restart-the-agent
-[projects]: /use-timescale/:currentVersion:/members/
+[projects]: /use-timescale/:currentVersion:/security/members/
 [datadog-api-key]: https://docs.datadoghq.com/account_management/api-app-keys/#add-an-api-key-or-client-token
 [pricing-plan-features]: /about/:currentVersion:/pricing-and-account-management/#features-included-in-each-plan
 [run-queries]: /getting-started/:currentVersion:/run-queries-from-console/

lambda/redirects.js

@@ -1053,4 +1053,8 @@ module.exports = [
     from: '/use-timescale/latest/metrics-logging/insights/',
     to: 'https://docs.tigerdata.com/use-timescale/latest/metrics-logging/monitoring/#insights',
   }
+  {
+    from: '/use-timescale/latest/members/',
+    to: 'https://docs.tigerdata.com/use-timescale/latest/security/members/',
+  }
 ];

use-timescale/metrics-logging/aws-cloudwatch.md

@@ -41,4 +41,4 @@ This section shows you how to attach, monitor, edit, and delete a data exporter.
 [console-services]: https://console.cloud.timescale.com/dashboard/services
 [services-portal]: https://console.cloud.timescale.com/dashboard/services
 [pricing-plan-features]: /about/:currentVersion:/pricing-and-account-management/#features-included-in-each-plan
-[projects]: /use-timescale/:currentVersion:/members/
+[projects]: /use-timescale/:currentVersion:/security/members/

use-timescale/metrics-logging/datadog.md

@@ -42,4 +42,4 @@ This section shows you how to attach, monitor, edit, and delete a data exporter.
 [console-services]: https://console.cloud.timescale.com/dashboard/services
 [services-portal]: https://console.cloud.timescale.com/dashboard/services
 [pricing-plan-features]: /about/:currentVersion:/pricing-and-account-management/#features-included-in-each-plan
-[projects]: /use-timescale/:currentVersion:/members/
+[projects]: /use-timescale/:currentVersion:/security/members/

use-timescale/page-index/page-index.js

@@ -173,11 +173,6 @@ module.exports = [
           },
         ],
       },
-      {
-        title: "Control user access to Tiger Cloud projects",
-        href: "members",
-        excerpt: "User management in Tiger Cloud",
-      },
       {
         title: "Write data",
         href: "write-data",
@@ -701,6 +696,16 @@ module.exports = [
             href: "overview",
             excerpt: "Get an overview of Tiger Cloud security",
           },
+          {
+            title: "Control user access to projects",
+            href: "members",
+            excerpt: "Project and user role management in Tiger Cloud",
+          },
+          {
+            title: "Manage data security in your service",
+            href: "read-only-role",
+            excerpt: "Restrict access to your data with roles",
+          },
           {
             title: "SAML authentication",
             href: "saml",
@@ -717,11 +722,6 @@ module.exports = [
             excerpt:
               "Client credentials to programmatically access your Tiger Cloud account",
           },
-          {
-            title: "Read only role",
-            href: "read-only-role",
-            excerpt: "Create a read-only role to access your database",
-          },
           {
             title: "Connect with a stricter SSL mode",
             href: "strict-ssl",

use-timescale/security/index.md

@@ -7,13 +7,13 @@ keywords: [security]
 
 # Security
 
-Learn how your $SERVICE_LONG is secured to protect your data and
-privacy.
+Learn how $CLOUD_LONG protects your data and privacy.
 
 *   Learn about [security in $CLOUD_LONG][overview]
+*   Restrict access to your [$PROJECT_SHORT][console-rbac]
+*   Restrict access to the [data in your $SERVICE_SHORT][read-only]
 *   Set up [multifactor][mfa] and [SAML][saml] authentication
 *   Generate multiple [client credentials][client-credentials] instead of using your username and password
-*   Grant [read-only access][read-only] to your data
 *   Connect with a [stricter SSL mode][ssl]
 *   Secure your $SERVICE_SHORTs with [VPC peering][vpc-peering]
 *   Connect to your $SERVICE_SHORTs from any cloud with [AWS Transit Gateway][transit-gateway]
@@ -27,4 +27,5 @@ privacy.
 [read-only]: /use-timescale/:currentVersion:/security/read-only-role/
 [vpc-peering]: /use-timescale/:currentVersion:/security/vpc/
 [ip-allowlist]: /use-timescale/:currentVersion:/security/ip-allow-list/
-[transit-gateway]: /use-timescale/:currentVersion:/security/transit-gateway/
+[transit-gateway]: /use-timescale/:currentVersion:/security/transit-gateway/
+[console-rbac]: /use-timescale/:currentVersion:/security/members/

use-timescale/security/ip-allow-list.md

@@ -75,7 +75,7 @@ You have successfully added an IP allow list for querying your $SERVICE_SHORT in
 [console]: https://console.cloud.timescale.com/dashboard/
 [pricing-plans]: /about/:currentVersion:/pricing-and-account-management/
 [vpc-peering]: /use-timescale/:currentVersion:/security/vpc/
-[members]: /use-timescale/:currentVersion:/members/
+[members]: /use-timescale/:currentVersion:/security/members/
 [modes]: /getting-started/:currentVersion:/services/