Access Control
Groups
Groups
enable the Access Control mechanism that allows admins to restrict runops users
to access only certain resources.
Groups
is a comma-separated string that defines all groups that a user belongs to. The groups declared in the user
will allow this user
to only access other resources (like targets or approve tasks) whose groups
match one of their groups.
For instance, the above statement will allow this user only to use targets whose groups
are either dev
or support
. Also
if a target has a review flow configured, this user will be able to approve only tasks whose groups
are either dev
or support
.