Production Access Policy Validation

Problem Statement

In #15778 (closed) the community identified a need for users, not just roles, to be permissioned for production environments. We need to validate if an outside tool would satisfy the needs:

Use open-source Open Policy Management https://www.openpolicyagent.org/ in order to define users that allowed to deploy to production

Kube Guide - https://www.openpolicyagent.org/docs/latest/kubernetes-introduction/

Docker Guide - https://www.openpolicyagent.org/docs/latest/docker-authorization/

Reach

This type of feature would get a 8-10 on the reach, given that all users might want to permission specific users not just roles

Impact

0.5 low impact, given that we can permission on roles today.

Confidence

50% Low confidence, there are 11 upvotes on #15778 (closed) - but minimal engagement from community

Effort

TBD - need help

Edited Dec 06, 2019 by Jackie Porter