Skip to content
This repository was archived by the owner on Feb 2, 2022. It is now read-only.
This repository was archived by the owner on Feb 2, 2022. It is now read-only.

Use AAD Groups to restrict access to RAFT deployments #41

Open
Open
Use AAD Groups to restrict access to RAFT deployments#41
Labels
enhancementNew feature or request
@mgreisen

Description

@mgreisen
mgreisen
opened on Nov 5, 2020

Access to a deployment's API

The proposed feature is to add support to restrict access to the deployment based on membership to an AAD group. This would allow fine grain control over who has access to the API and removes the possibility of someone with AAD guest access being able to submit jobs, etc.

This change would affect who would have permissions to authenticate with the service. If you did not belong to the AAD group, your authentication to the service should fail.

Storage Data

Current access to storage accounts is currently controlled with Azure RBAC which already supports AAD groups. There will be no change to this method of access control.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions