Actions
action #11368
closedoperators should be able only to restart jobs and create/modify needles
Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Feature requests
Target version:
-
Start date:
2016-03-31
Due date:
% Done:
100%
Estimated time:
Description
Currently operators have read/write access to job templates, job groups, medias, etc. via API and since PR#622 via WebUI.
This access level is too broad and operators access should be scaled back to allow regular job and test maintenance - restarting jobs, updating needles - but no test administration.
One question remain: Since API access (using api keys) level follows access level of user, should operators have r/w access to job status? This is needed for workers, so the high level question is should users used to deploy workers has administrator or operator level?
Actions