Solution for Access Control in UCP

org.svg

whalecorp.md

Solution for Access Control in UCP

Create organisation and teams

1. Create a new organisation with the name whalecorp

2. Within this organisation create the following teams:

• development
• qa
• operations

Create users

1. Create the following users:

• joey
• shaun
• kelly
• barry
• chloe

2. Add each of the above users to a team, according to the org chart.

Create collections

1. Create a new collection on the root level and name it ops

2. Create the following child collections within the ops collection:

• dev
• qa

Change default collections

1. Change, for each of the users, their default collection.

Create resources

1. Create an overlay network dev-net for the development team and make sure to add it to the dev collection

2. Create an overlay network qa-net for the qa team and make sure to add it to the qa collection

3. Create a secret dev-secret for the dev team and make sure to add it to the dev collection

4. Create a secret qa-secret for the qa team and make sure to add it to the qa collection

Create grants

1. Create a grant for the ops collection, use the Full Control role and assign it to operations team within the whalecorp organization

2. Create a grant for the dev collection, use the Full Control role and assign it to development team within the whalecorp organization

3. Create a grant for the qa collection, use the Restricted Control role and assign it to qa team within the whalecorp organization

Assign nodes to collection

1. Assign ucp-node-0 to collection ops\dev

2. Assign ucp-node-1 to collection ops\qa