Roles
In AMDP, when registering users, they are primarily categorized as SYSTEM ADMINISTRATOR (hereafter referred to as administrator) and DEVELOPER (hereafter referred to as developer). This distinction allows administrators to set up necessary basic information and manage the entire system, while developers are limited to working on applications they are part of.
Full project authority is held by PROJECT ADMINISTRATOR (hereafter referred to as owner), designated as either an administrator or developer. Administrators can view all projects as they are capable of managing the entire system. However, without being registered as an owner, they cannot manage the projects completely.
Additionally, to designate someone as a PROJECT USER (hereafter referred to as member), other than the owner, project management can assign READ/WRITE/EXECUTE permissions (hereafter referred to as RWX) to a developer for specific applications, thereby registering them as a member. Members are allowed to view only the profiles assigned to them and can work on the designated applications according to the RWX permissions granted.
Below is a summary of the viewing and permissions based on the user type (administrator / developer) and the type of project affiliation (owner / member).
The purpose of user permissions is to grant and control READ/WRITE/EXECUTE permissions for applications to individual users or groups. It's possible to assign different permissions to overlapping targets, and if multiple permissions exist for the same application, the higher permission is utilized. For example, the final result for the following three scenarios can be explained:
- User A is granted READ permission for all applications in the develop profile.
- User A is granted FULL permission for the hello application in the develop profile.
- The ci group (User A's group) is granted READ and EXECUTE permissions for all applications in all profiles. Result) User A has READ and EXECUTE permissions for all applications in all profiles and also holds FULL permission for the hello application in the develop profile.
Menuβ
Defines menu items available to users based on their user type.
| Administrator | Developer | |
|---|---|---|
| Project | YES | YES |
| Application | YES | YES |
| Topology | YES | YES |
| Project management | YES | YES |
| Pipeline Code Template | YES | NO |
| Group management | YES | NO |
| User Management | YES | NO |
| Cluster management | YES | NO |
| Add-on services management | YES | NO |
Project Menuβ
The Project Menu displays different project lists based on the user type. An administrator can view all projects, but a developer will only see the projects to which they are assigned (as either owner or member).
| Administrator | Developer | |
|---|---|---|
| Project List | All Projects | Only Assigned Projects |
1. Profile Listβ
Upon selecting a project, the main page displays a list of profiles, with visible items varying depending on the user type, project membership, and permissions.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | Not Affiliated | Owner | Member | Not Affiliated | |
| List display | All | All | All | All | Designated Profile | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
| Clone | O | X | X | O | X | X |
2. Profile Detailsβ
When a profile is selected, the main page shows the profile details and resource tabs.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| Detailed Information | O | O | O | O | O | X |
| Edit | O | O | O | O | O | X |
| Clone | O | X | X | O | X | X |
| Wizard | O | X | X | O | X | X |
3. APPLICATION Tabβ
The APPLICATION tab in profile details displays a list of registered applications. Although it shows all registered applications, the items that can be controlled vary depending on the project affiliation type and permissions.
If a user is a regular member, the permissions for the functions in the application tab depend on the application permissions in the project details - user permissions. Only with Full Permissions does the user have Write Permissions for the specified application.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | Not Affiliated | Owner | Member | Not Affiliated | |
| List | O | O | O | O | Designated Application | X |
| Detailed Information | O | O | O | O | O | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | Designated Application | X |
| Delete | O | X | X | O | Designated Application | X |
| Grant Permission | O | O | O | O | X | X |
| Deployment Status | O | O | O | O | O | X |
| Pipeline Settings | O | O | O | O | O | X |
| Build Pipeline Status | O | O/O/O | O | O | O/O/O | X |
| Build Pipeline Execution | O | O/O/X | X | O | O/O/X | X |
| Build Pipeline History | O | O/O/O | O | O | O/O/O | X |
| Build Pipeline Access | O | O/O/O | O | O | O/O/O | X |
| Deploy Pipeline Status | O | O/O/O | O | O | O/O/O | X |
| Deploy Pipeline Execution | O | O/O/X | X | O | O/O/X | X |
| Deploy Pipeline History | O | O/O/O | O | O | O/O/O | X |
| Deploy Pipeline Rollback | O | O/O/X | X | O | O/O/X | X |
| Deploy Pipeline Access | O | O/O/O | O | O | O/O/O | X |
| Schedule Settings | O | O/X/X | X | O | O/X/X | X |
| Webhook Settings | O | O/X/X | X | O | O/X/X | X |
| Setting Tab | O | O/X/X | X | O | O/X/X | X |
4. BACKING SERVICE Tabβ
Permissions for the BACKING SERVICE tab in the profile detail.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
5. INGRESS Tab β
Permissions for the INGRESS tab in the profile detail. administrator developer
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Detailed Information | O | X | X | O | X | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
| Deploy | O | X | X | O | X | X |
6. STORAGE Tabβ
Permissions for the STORAGE tab in the profile detail.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Refresh List | O | O | O | O | O | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
| Deploy | O | X | X | O | X | X |
7. CICD Tabβ
Permissions for the CICD tab in the profile detail.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| Deployment setting information | O | O | O | O | O | X |
| Modify Settings | O | X | X | O | X | X |
| Delete Tekton Pipeline | O (When used X) | X | X | O (When used X) | X | X |
| Delete a Jenkin Pipeline | O (When used X) | X | X | O (When used X) | X | X |
8. TRAFFIC MANAGEMENT Tabβ
Permissions for the TRAFFIC MANAGEMENT tab in profile details.
Activated only when two or more applications are registered.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Add | O | X | X | O | X | X |
| Action and Control | O | X | X | O | X | X |
9. ENV/PROPERTIES Tabβ
Permissions for the ENV/PROPERTIES tab in profile details.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Import | O | X | X | O | X | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
10. ADDON SERVICE Tabβ
Permissions for the ADDON SERVICE tab in profile details.
| Administrator | Developer | |||||
|---|---|---|---|---|---|---|
| Owner | Member | No Affiliation | Owner | Member | No Affiliation | |
| List | O | O | O | O | O | X |
| Add | O | X | X | O | X | X |
| Edit | O | X | X | O | X | X |
| Delete | O | X | X | O | X | X |
Applicationβ
The Application menu varies based on user type, displaying different lists of applications.
Administrators can view all applications, while developers only see applications they are affiliated with (owner or member) and those they have permissions for. Additionally, administrators have the same pipeline control permissions for each application as developers, depending on whether they are an owner or have execution/write permissions.
| Administrator | Developer | |
|---|---|---|
| Application List | All Applications | Permissioned Applications |
Project Managementβ
The Project Management menu varies based on user type, displaying different project lists.
Administrators can view and manage settings for all projects. Developers only see projects they are part of (owner or member) and only project owners can change settings.
| Administrator | Developer | |
|---|---|---|
| Project List | O (All Projects) | Only Affiliated Projects |
| Detailed Info | O (All Projects) | Only Affiliated Projects |
| Add | O (All Projects) | X |
| Delete | O (All Projects) | X |
Pipeline Code Templateβ
The Pipeline Code Template menu is accessible only to administrators. For detailed functionality, refer to Template Management.
| Administrator | Developer | |
|---|---|---|
| Pipeline Code Template List | O (All Templates) | X (No access) |
| Detailed Info | O | X |
| Add | O | X |
| Delete | O | X |
Group Managementβ
The Group Management menu is accessible only to administrators. For detailed functionality, refer to Group Settings Management.
| Administrator | Developer | |
|---|---|---|
| Group List | O (All Group) | X (No access) |
| Detailed Info | O | X |
| Add | O | X |
| Delete | O | X |
| Group Detail - User List | O | X |
User Managementβ
The User Management menu is accessible only to administrators. For detailed functionality, refer to User Settings Management.
| Administrator | Developer | |
|---|---|---|
| User List | O (All Users) | X (No access) |
| Detailed Info | O | X |
| Add | O | X |
| Edit and Bulk Edit | O | X |
Cluster Managementβ
The Cluster Management menu is accessible only to administrators. For detailed functionality, refer to Cluster Registration Management.
| Administrator | Developer | |
|---|---|---|
| Cluster List | O (All Users) | X (No access) |
| Detailed Info | O | X |
| Add | O | X |
| Delete | O | X |
| Cluster detail - Addon services | O | X |
Addon Service Managementβ
The Addon Service Management menu is accessible only to administrators. For detailed functionality, refer to Template Management.
| Administrator | Developer | |
|---|---|---|
| Cluster List | O (All Users) | X (No access) |
| Detailed Info | O | X |
| Add | O | X |
| Add TYPE | O | X |
| Delete | O | X |
| Cluster detail - Addon services | O | X |
(Beta) Topologyβ
Currently, Topology is in Beta version and has similar permissions to Applications