Org level resource group that only identifies all project level resources
long-term
P
Protective Stingray
We have a use case where we would like to give a user permission to view,create project level connectors but only view permission at org level connectors. This can't be done easily with the current structure of resource groups. The options I have are:
- only org level resources - does not give access to project level resources
- all resources including child scopes - give access to all resources at org and project level, no way to exclude org level resources
- specified project - is close to what is wanted in use case, can exclude org level resources
The problem with specified projects, is there is no way to select all projects, instead you have to select all projects individually. This causes problems when projects are added and deleted to the org, this list must be maintained.
Log In
A
Abhishek Thamman
long-term
A
Abhishek Thamman
pending feedback
A
Abhishek Thamman
long-term
Hi Protective Stingray,
Thanks for your request. The capability to select all Projects under Resource Scope > Specified Projects while creating a resource group at an Organization level is not possible today. I understand that you would also want this to be honoured as the list of projects under the Organization keeps on changing. Please note that I have added this request to our backlog and I will keep you posted once we pick it up or make progress on it.
As rightly mentioned by you, the current way around this is to:
- Create a Resource Group at Organization level and select "Specified Projects" under Resource Scope. Select all projects individually. You can then create a role with View and Create/Edit permissions for Connectors and finally create a role binding. Please note that you will have to add or remove projects as required in the resource group.
- Follow a similar method to provide only View permissions for Org level connectors.
Regards,
Abhishek Thamman
Prateek Mittal
under review