Granular Roles and Permissions
As an Organization administrator
I want to be able to create and define my own roles
so that I can specify as granular as possible what users with that roles can or can not do.
For example:
- I want to create a new role dedicated to manage and view only billing related information which is used for members of the finance department.
- I want to create a new role dedicated to manage users and groups which is used by members of the IT department.
Viktor Trykolenko
shared this idea
-
Lea Beyenburg
commented
We as an security orientated DevOps team would also love to have the option to define own roles and if possible to also create Tokens with specific roles (regardless of my own role)
For example:
- i am admin role, but i want to create an token with low privileges (custom role) to only turn DBs on and off but nothing else -
John Costa commented
We are interested in a default, read only role for new users so that they can see resources in the console and can use a git-ops process for managing new resource creation.
-
Mariano Szklanny commented
We are particularly interested in a role that grants read-only access to billing related information, including GET https://api.aiven.io/v1/billing-group/{billing_group_id}/invoice'.
At the moment, the only way to read billing data is by being a Super Admin, which is too broad.
Thanks