Setting Up Different Permissions for Users

Last updated: November 10, 2024

Overview

In Spacelift, you can assign users different permissions and access levels using several features, such as user management, policies, and spaces. This article explains how to leverage these options to control user access and permissions effectively.

Method 1: User Management

Navigate to Organization Settings
- Click on your user icon in the bottom-right corner of the Spacelift dashboard.
- Select Organization Settings to access user management options.
Assign Roles
From the organization settings, you can assign users different roles and manage their permissions at the organization level.

You can read more about each role here.

Method 2: Using Policies for Granular Permissions

Spacelift offers several types of policies that can be used to define permissions:

Login Policies
- Define who can access the account and set specific privileges, such as admin, read, or write access.
- Login policies can be more granular and restrict the time / IP address someone can access from.
- For more details, see the Login Policies documentation.
- You can read more about each role here.
Approval Policies
- Use approval policies to control which team members can approve runs on a stack.
- Learn more about approval policies here.

Top Tip: Enable sampling and use the Policy Workbench for testing and refining policies. This tool allows you to preview how policies affect user access without making permanent changes.

Read more about Spaces in Spacelift to learn how to set up and use them for access control.