Access control

2 minute read

CloudBees Release Orchestration SaaS enables you to assign access controls or privileges to each user in the platform, based on the assigned role.

Five predefined roles—​Admin, DevOps, Developer, Manager, and QA—​are useful for setting up role-based access control (RBAC). When RBAC is enabled, you can configure predefined roles specifically for your organization. CloudBees Release Orchestration SaaS also enables you to create custom roles with unique access controls. Users with the Admin role retain access to all groups and pipelines.

Table 1. CloudBees Release Orchestration SaaS predefined roles and definitions
Name Definition

Admin

Manages user accounts, access control, settings, and pipeline definitions. The Admin role cannot be edited.

DevOps

Understands the software development lifecycle and uses various tools and scripts to automate the process.

Developer

Develops and tests software. Commits code to source control management, which triggers a pipeline execution.

QA

Ensures the quality of the product by performing regular audits and automated and manual tests.

Manager

Oversees team performance, product development, and releases. Usually provides approvals.

You must have the Admin role to configure access controls, add new custom roles, or delete custom roles.

Configuring access controls

An administrator can edit all predefined roles, except for the Admin role, and they can edit all custom roles.

To configure access controls:

  1. From the CloudBees Release Orchestration SaaS Home page, select Admin  User management.

  2. Select Access control from the left pane. The role name and number of users are listed.

  3. Select a role.

  4. Select Notepad Edit.

    Editing a role
    Figure 1. A predefined role selected and the edit icon highlighted
  5. Select the permissions you want the role to have, and deselect any you do not want the role to have.

  6. Select Save.

Your access control configuration is saved.

Creating a custom role

Create a new role with custom access controls specifically for the needs of your organization.

To create a custom role:

  1. From the CloudBees Release Orchestration SaaS Home page, select Admin  User management.

  2. Select Access control from the left pane.

  3. Select Add role.

    Roles and users
    Figure 2. Roles and numbers of users with Add role highlighted
  4. Select the permissions you want the role to have, and deselect any you do not want the role to have.

  5. Select Save.

    Granting permissions
    Figure 3. Selecting the permissions for a custom role

Your custom role is saved and listed in the role options. You can create new users with this role, or update any user account to have this role.

Deleting a custom role

  • You cannot delete any predefined roles, you can only remove all users from the role.

  • If there is an existing user with a custom role, that custom role cannot be deleted.

To delete a custom role:

  1. From the CloudBees Release Orchestration SaaS Home page, select Admin  User management.

  2. Select Access control from the left pane.

  3. Select the role to delete.

  4. Select Trash can Delete.

  5. Select Delete again.

Your custom role is deleted.

To learn more about user accounts, refer to User accounts.