From 3070ea2e44f34c52e5cec7db8ef51e3faf7a775a Mon Sep 17 00:00:00 2001
From: PlanetScale Actions Bot <operations+build@planetscale.com>
Date: Fri, 20 Sep 2024 13:20:23 +0000
Subject: [PATCH] docs: upstream

https://github.com/planetscale/www/commit/17c31a0d7022b8a7eb400a8e9315ba3075628053
---
 docs/concepts/service-tokens.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/docs/concepts/service-tokens.md b/docs/concepts/service-tokens.md
index be0d9741..b8184d7c 100644
--- a/docs/concepts/service-tokens.md
+++ b/docs/concepts/service-tokens.md
@@ -36,7 +36,7 @@ For a full list of organization access permissions, see the [API documentation f
 
 ### Add database permissions
 
-In order to perform operations specific to a database, permissions need to be assigned per-database. To do this, locate the section titled **Database access** and click **"Add database access"** to open the **Database access permissions** modal.
+In order to perform operations specific to a database, permissions can be assigned per-database. To do this, locate the section titled **Database access** and click **"Add database access"** to open the **Database access permissions** modal.
 
 Select the database you want to grant access to and check the box next to each permission option you need to grant. Once you are done, click **"Save permissions"**.
 
@@ -44,6 +44,11 @@ For a full list of database access permissions, see the [API documentation for s
 
 ![The Database access permissions modal.](/assets/docs/concepts/service-tokens/db-access-permissions-2.png)
 
+### Add permissions for all databases
+
+Organization admins can grant database permissions to all current and future databases. This is available in the **Permissions for all databases** section.
+Any permission added to all databases will not be able to be disabled on an individual basis.
+
 ## Service tokens and deploy requests approvals
 
 When a database requires administrator approval for deploy requests (located in your database's **Settings** page), a service token cannot approve a deploy request created by the same service token. Also, users can't approve a deploy request created by a service token that they created.