Example group permission roles

Sections

With Puppet Pipelines teams and groups you can define permissions for team members. This document will layout the permissions required for example roles.

Groups

Permissions are defined in groups. Users are assigned to groups. For more information see:

To create group permissions you will need to do the following:

  1. Create a group.
  2. Assign permissions to the group.
  3. Assign users to the group.

Roles

The following are four example roles.

Read-Only providing read-only access to team activities, including; builds, releases, and deploys.

Deploy and Build any Application providing the ability to create, build, and deploy any team application.

Deploy and Build a Single Application providing the ability to build and deploy an application.

Manager providing the ability to manage the team account.

All Groups

Read-only

Read-Only Permissions

These permissions will allow a user to view most details for the team. They will not be able to deploy or make changes.

A user assigned these permissions can/cannot:

  • View all applications
  • View all application environments
  • View all servers
  • View all builds
  • View all releases
  • View all deployments
  • Cannot view application settings
  • Cannot view environment settings
  • Cannot view team global settings

Deploy and Build any Application

All Apps Permissions

These permissions will allow a user to build and deploy all applications in the team.

A user assigned these permissions can/cannot:

  • Build and deploy any application
  • Deploy to any application environments
  • Manage servers
  • View all builds
  • View all releases
  • View all deployments
  • Cannot view application settings
  • Cannot view environment settings
  • Cannot view team global settings

Deploy and Build a Single Application

Permissions One App

These permissions will allow a user to build and deploy on a specific application. In this example Applications access is set to No Access and Full Access is granted to one application. Note, you can grant full access to more than one application.

Permissions One App Dialog

A user assigned these permissions can/cannot:

  • Build and deploy a specific application
  • Deploy to the specific application environments
  • Manage servers
  • View all releases
  • View all deployments
  • Cannot view application settings
  • Cannot view environment settings
  • Cannot view team global settings

Manager

Permissions Manager

A user assigned these permissions can/cannot:

  • View all applications
  • View all application environments
  • View all servers
  • View all builds
  • View all releases
  • View all deployments
  • View team global setting
  • Edit Billing Plan
  • Edit Groups
  • Edit Team
  • Edit Integrations
  • Cannot view application settings
  • Cannot view environment settings
  • Cannot view credentials

Notes

To allow a user access to Application Settings they must have Full Control for Applications.

To allow a user access to Environment Settings they must have Full Control for Environments.

To allow a user the ability to Delete Servers they must have Full Control to Agent.

How helpful was this page?
Puppet sites use proprietary and third-party cookies. By using our sites, you agree to our cookie policy.