Day 2 policy

Flipper35 · ‎04-11-2023

Is there a way to restrict the access to deployments to the owner in Service Broker? For example, I would prefer that a member not be able to request an action on a deployment that is not theirs, or at least limit those actions. For example, in the development side it would be fine for them to request a deletion for their own servers, but not someone else's, whether by design or on accident.

This is new to us and I am sure I am just missing a check box somewhere.

Thanks.

pnaidu · ‎04-11-2023

When you add a new user or a group within an existing project you do have the option to assign the role where you could choose Member (who can view own provisioned resources, provision new resources) only.

You can further restrict the user/group to perform any Day2 action by creating a new Day2 action policy as well.

Flipper35 · ‎04-17-2023

Thanks. I missed that part.

All

Day 2 policy

Day 2