Skip to main content

Access Control


Groups enable the Access Control mechanism that allows admins to restrict runops users to access only certain resources.

Groups is a comma-separated string that defines all groups that a user belongs to. The groups declared in the user will allow this user to only access other resources (like targets or approve tasks) whose groups match one of their groups.

For instance, the above statement will allow this user only to use targets whose groups are either dev or support. Also if a target has a review flow configured, this user will be able to approve only tasks whose groups are either dev or support.