Allow admins to bypass some launch checks (!5) · Merge requests · Ignition Robotics / Ignition Robotics

Alejo Carballude requested to merge feature/ecr_owner_check_allow_admins into develop Mar 06, 2020

Related tasks

Context

There is a check in place to prevent a team from launching simulations using another team's robot docker images (when hosted on ECR). This check is done using the identity of the user that owns the request's JWT bearer token. This check was always being applied to system admins.

Changes

This PR allows admins to bypass the following checks:

Check to ensure that robot images hosted on ECR for a simulation launch belong to the JWT user's team.
Check to ensure that the total number of robot credits do not exceed the target circuit credit limit.
Check to ensure that the team launching the simulation has qualified to the target circuit.

Other information

Additional documentation

Reviewers

@nkoenig

Allow admins to bypass some launch checks