viewonly access has the least privilege. This user can only view combination of environments, applications and helm charts on which access has been granted to the user. This user cannot view sensitive data like secrets used in applications or charts. 2. Build and Deploy: In addition to
viewprivilege mentioned in above, user with
build and deploypermission can build and deploy the image of permitted applications and helm charts to permitted environments. 3. Admin: User with
adminaccess can create, edit, delete and view permitted applications in permitted projects. 4. Manager: User with
manageraccess can do everything that an
admintype user can do, in addition they can also give and revoke access of users for the applications and environments of which they are
manager. 5. Super Admin: User with
super adminprivilege has unrestricted access to all Devtron resources. Super admin can create, modify, delete and view any Devtron resource without any restriction; its like Superman without the weakness of Kryptonite. Super Admin can also add and delete user access across any Devtron resource, add delete git repository credentials, docker registry credentials, cluster and environment.
Select Global Configurations-> Select
Add User, to add one or multiple users.
Email addressbox, you have to provide the mail ID of the user to whom you want to give access to your applications.
IMPPlease note that Email address should be same as that in the
Assign super admin permissions, the user will get full access to your system and the rest of the options will disappear. Please check above to see permission levels.
Saveand your user will be saved with super admin permissions.
Direct Permissionssection. This section has 4 options to manage the permissions of your users.
Environmentsection, you can select one or more than one or all environments at a time. Click on the environment section, you will see a drop-down of your environments and select any environment on which you want to give permission to the user.
all environmentsoption is selected then user gets access to all current environments and any new environment which gets associated with this application later.
Applicationsfrom the drop-down corresponding to your selected Environments. In this section, you can also give permissions to one or more than one or to all applications at a time.
all applicationsoption is selected then user gets access to all current applications and any new application which gets associated with this project later.
Role, you actually choose which type of permissions you want to give to the users.
Viewpermission for the charts deployed in the environments on which he/she has at least
viewaccess to any application.
Create, if you want the users to create, view, edit, or delete all the chart groups.
Edit, if you want to
denyusers to edit the chart groups.
Denyoption from the drop-down menu, if you want to restrict the users to edit the chart groups.
Specific Chartsoption from the drop-down menu, and then select the chart groups for which you want to allow users to edit, from the other drop-down menu.
Save, once you have configured all the required permissions for the users.
Group permissionssection inside
Add Group, to create a new group.