Skip to content

Commit

Permalink
🛂 Update Analytical and Data Platform permissions model (#5287)
Browse files Browse the repository at this point in the history 
Signed-off-by: Jacob Woffenden <jacob.woffenden@digital.justice.gov.uk>
  • Loading branch information
Jacob Woffenden authored Nov 21, 2023
1 parent d527a4f commit 1f9905d
Show file tree
Hide file tree
Showing 8 changed files with 56 additions and 117 deletions.
30 changes: 13 additions & 17 deletions environments/analytical-platform-data-engineering.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,45 +5,41 @@
"name": "production",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-data-engineering-production-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
},
{
"github_slug": "data-engineering-aws",
"github_slug": "analytical-platform-data-engineering-production-data-engineer",
"level": "data-engineer"
},
{
"github_slug": "data-engineering-aws-developers",
"github_slug": "analytical-platform-data-engineering-production-developer",
"level": "developer"
},
{
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
},
{
"name": "sandboxa",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-data-engineering-sandboxa-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
"github_slug": "analytical-platform-data-engineering-sandboxa-data-engineer",
"level": "data-engineer"
},
{
"github_slug": "data-engineering",
"level": "administrator"
"github_slug": "analytical-platform-data-engineering-sandboxa-developer",
"level": "developer"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
}
Expand Down
24 changes: 10 additions & 14 deletions environments/analytical-platform-data.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,37 +5,33 @@
"name": "development",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-data-development-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
"github_slug": "analytical-platform-data-development-data-engineer",
"level": "data-engineer"
},
{
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
},
{
"name": "production",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-data-production-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
},
{
"github_slug": "data-engineering-aws",
"github_slug": "analytical-platform-data-production-data-engineer",
"level": "data-engineer"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
}
Expand Down
12 changes: 2 additions & 10 deletions environments/analytical-platform-landing.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,20 +5,12 @@
"name": "production",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-landing-production-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "administrator"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
}
Expand Down
12 changes: 2 additions & 10 deletions environments/analytical-platform-management.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,20 +5,12 @@
"name": "production",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-management-production-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
}
Expand Down
24 changes: 4 additions & 20 deletions environments/analytical-platform.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,41 +5,25 @@
"name": "development",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-development-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
},
{
"name": "production",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "analytical-platform-production-administrator",
"level": "administrator"
},
{
"github_slug": "analytics-hq",
"level": "view-only"
},
{
"github_slug": "data-platform-security-and-auditors",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
}
Expand Down
20 changes: 12 additions & 8 deletions environments/data-platform-apps-and-tools.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,18 +5,18 @@
"name": "development",
"access": [
{
"github_slug": "data-platform-core-infra",
"github_slug": "data-platform-apps-and-tools-development-sandbox",
"level": "sandbox",
"nuke": "exclude"
},
{
"github_slug": "data-tech-archs",
"level": "sandbox",
"github_slug": "data-platform-apps-and-tools-airflow-users",
"level": "mwaa-user",
"nuke": "exclude"
},
{
"github_slug": "data-platform-apps-and-tools-airflow-users",
"level": "mwaa-user",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit",
"nuke": "exclude"
}
]
Expand All @@ -25,12 +25,16 @@
"name": "production",
"access": [
{
"github_slug": "data-platform-core-infra",
"github_slug": "data-platform-apps-and-tools-production-developer",
"level": "developer"
},
{
"github_slug": "data-tech-archs",
"level": "developer"
"github_slug": "data-platform-apps-and-tools-airflow-users",
"level": "mwaa-user"
},
{
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
}
Expand Down
49 changes: 12 additions & 37 deletions environments/data-platform.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,78 +5,53 @@
"name": "development",
"access": [
{
"github_slug": "data-platform-core-infra",
"github_slug": "data-platform-development-sandbox",
"level": "sandbox",
"nuke": "exclude"
},
{
"github_slug": "data-tech-archs",
"level": "sandbox",
"nuke": "exclude"
},
{
"github_slug": "data-platform-labs",
"level": "sandbox",
"github_slug": "data-platform-audit-and-security",
"level": "security-audit",
"nuke": "exclude"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "security-audit"
},
{
"github_slug": "data-platform-security-and-auditors",
"level": "read-only"
}
]
},
{
"name": "test",
"access": [
{
"github_slug": "data-platform-core-infra",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"github_slug": "data-platform-test-developer",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"level": "view-only"
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
},
{
"name": "preproduction",
"access": [
{
"github_slug": "data-platform-core-infra",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"github_slug": "data-platform-preproduction-developer",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"level": "view-only"
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
},
{
"name": "production",
"access": [
{
"github_slug": "data-platform-core-infra",
"github_slug": "data-platform-production-developer",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"level": "developer"
},
{
"github_slug": "data-platform-labs",
"level": "view-only"
"github_slug": "data-platform-audit-and-security",
"level": "security-audit"
}
]
}
Expand Down
2 changes: 1 addition & 1 deletion environments/mi-platform.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@
"name": "development",
"access": [
{
"github_slug": "analytical-platform",
"github_slug": "mi-platform-development-administrator",
"level": "administrator"
}
]
Expand Down

0 comments on commit 1f9905d

Please sign in to comment.