Comment on page

Role-based Access Control

StackState for Kubernetes troubleshooting Self-hosted

Access Management helps you manage who has access to the specific topology elements, UI elements, and which APIs they can call.
RBAC is an authorization system that provides fine-grained access management of StackState resources, a clean and easy way to audit user privileges and to fix identified issues with access rights.
What can I do with RBAC?
Here are some examples of what you can do with RBAC:
Allow one user to have access to the development cluster only, another one to both the production and development cluster and a third can access the development cluster and only 1 namespace in the production cluster.
Give a small group of users an administrator role to setup and configure StackState. While giving all developers a troubleshooter role to view all topology, metrics, logs and events, but with limited configuration capability.
What's a role in StackState?
A role in StackState is a combination of a configured subject and a set of permissions. Process of setting up a role in StackState is described in How to set up roles.
More on RBAC configuration
​Permissions​
​How to set up roles​
​Scopes​
​How to configure authentication​

RBAC

Permissions

Last modified 4mo ago