Group Access#
Rules that govern access to the DevOps Dashboard can be configured in the admin UI. To do so, go to the DevOps page accessible under System → Administrators. Initially, no rules exist. In such a case, new rules can be configured by clicking the Configure Permissions button. When this is done, a wizard is started.
Configuring Wizard#
Step 1: Select Group#
The first page asks which group the rule should be for.
Step 2: Define Permissions#
On the following page, the wizard asks if:
- Permissions should be allowed to read alarms
- Access should be allowed to OAuth clients
The former will grant read-only access to alarms if selected. If OAuth client access isn’t allowed, the wizard will end at this point. If client access is granted, however, additional pages are shown.
Step 3: Select OAuth Profiles#
The next page in the wizard allows an administrator to grant access to a certain OAuth profile or all of them:
When Selected Profiles is chosen, a multi-select widget is shown where certain OAuth profiles can be selected. Next, a subset of OAuth clients or all of them (in all or the specific OAuth profiles previously selected) can be granted access to.
Step 4: Scope Access Control#
On the next page, the administrator has the option to allow developers to modify scopes or not. The default is that they cannot, making scopes read-only in the DevOps Dashboard.
Step 5: Set Access Level#
On the final page, an administrator can select to grant read-only or read-write access to the previously selected OAuth clients.
Managing Rules#
Once the rules are created, they are listed on the page in a table view. From this view, each rule can be:
- Edited - Modify the rule configuration
- Deleted - Remove the rule
- Duplicated - Create a copy of the rule
These actions are available through the Actions menu for each rule.
Rules for the DevOps Dashboard are not listed on the Permissions page. They are managed exclusively through the DevOps page under System → Administrators.