Granting Release Automation (CDA) Folder Authorizations

As an Administrator, you grant folder authorizations to a user or user group. These include read, use, write, execute, and delete permissions.

CDA has its own set of authorizations, based on folders. The CDA entities (Applications, Component, Workflows...) are added to these folders.

Important! You can create a new folder from the Folder Authorizations page. This folder will be available to all users.

Notes:

  • You can grant Automic Continuous Delivery Automation folder authorizations to a user or user group when you first create the user or user group definition or later when you edit the definition.
  • CDA Permissions are mapped to AE authorizations based on the configuration file *folder_authorization_mapping.config* (WebUI folder: Automic\Release.Manager\WebUI). Synchronization is performed when CDA roles or authorizations are edited, specifically:
    • When an administrator role is revoked
    • When CDA folder authorizations are modified

To Assign CDA Folder Authorizations

  1. Open the user or user group definition.
  2. Open the Folder Authorizations page to see the folder rights that are already assigned. For example, Add Folder.
  3. Select or clear the checkboxes for the folder rights that you want to assign to the user or user group. The options are:
    • Read – you can access the folder and view all entities within.

      Important! Some entities may be visible even if you do not have read permissions on them.

      Example:

      If you have read permissions on a top-level entity (for example, an Application) you can see its sub-entities too (but not its properties). That is, if you can access an Application, you can see the Application Packages. When the Package State change is triggered and the Package is stored in another folder for which you do not have any permissions, the Package is still shown in the Application Dashboard and in the Package list. A permission denied message suggesting you to contact the owner is displayed in the right sidebar.

    • Use – you are allowed to reference entities in this folder from other entities.

      Example: if you want to assign an environment to a profile, you require use permission on the folder in which the environment is stored.

    • Write – you are allowed to change entities in this folder.

      Example: when you want to assign an environment to a profile, you require write permission on the folder in which the profile is stored.

    • Execute – you are allowed to use the entity when executing a workflow. Granting execute permissions on a folder automatically assigns read permissions on that same folder.
    • Delete – you are allowed to delete entities in this folder.

    Note: When you select any rights other than Read, the Read checkbox is automatically selected and disabled (unavailable) because all other rights imply read rights.