rollupid icon indicating copy to clipboard operation
rollupid copied to clipboard
verified publisher icon proofzero

feat(console): team management

Open 4x4notfound opened this issue 2 years ago • 1 comments

Why

Users of rollup and rollup apps need team management features to administer:

  • access to rollup apps
  • access to customer app features (e.g. multi-tenant saas app)
  • issue service accounts for automation
  • membership imports
  • and more

What

We will create a account-like node with group APIs. This group node will have:

  • Permissions attached to members following the linux model (read, write, execute)
  • User experience to manage groups and membership for rollup apps in console
  • Galaxy API key should have permissions to create nested groups (groups administered by the app)
  • Groups can have their own API keys / service accounts with assigned permissions to administer the group
  • Groups can have developer assigned metadata to implement RBAC/ABAC for their apps (custom roles)
  • Roles with preset permissions for convenience
  • ownership transfer

How

  1. Priority is first to build the group node with permission based access and an interface in console for managing apps.
  2. Break out and prioritize the rest of the features

4x4notfound avatar Feb 27 '23 21:02 4x4notfound

Admin groups being tackled as part of #2447. Rest to be broken out in the future.

betimshahini avatar Jul 31 '23 12:07 betimshahini