Support for multi-tenancy / granular permissions on Management Portal
Benefits / Value:
1 (Prio). We need to have granular permissioning of content in the management Portal
we would like to set Access Control to Service Designs, Service Offerings, resource Offerings as well as Providers.
We are working with multiple Projects and internal organizations on the same CSA instance
That makes it extremely hard to separate the content of different Project groups and ensure that no one changes/deletes the content of a different Project.
Suggestion is to start by separate in the Provider Org into Master ADmins ->can access content of all
And Project Groups -> All content of members of the Project group is shared/changeable within the Groups
Certain Content like ResourceOfferings must be made "Public" -> this means they can be used by every Group in Service Designs but only changed by Owner Group
2 (Prio) allow multitenancy at Management portal. or transport Service Design function to Tenant MPPs
Keep the concept of Provider Organization but allow customer Organizations to build own Designs and Offerings (extend the Customer Organization Admin concept)
This must ensure that Tenant Organization can only see/use REsource Offerings that the provider Org has given (shared) with the Tenant Organizations. Service Designs and offerings that are not shared with Tenant Organization for editing must not be changeable by tenant. This does not apply to the Service Provider Organization creating and Publishing Offerings to a tenant.
we as service provider are working with a lot of teams on CSA. different teams produce different modules. we need to work on same instance as this allow sharing better and save resources. as well as we need to test against same interfacing systems. we can not develop on isolated systems
For the second Prio topic we have customers that would like to build theire own Application Designs using our Resource Offerings we provided as Service Provider on the same platform where we deliver our services to the customer
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.