https://platformengineering.org logo
#general
Title
# general
j

Jesse Sanford

01/17/2023, 9:19 PM
Anyone know if there is a central policy layer for humanitec's resource management capabilities?
g

Giulia Guizzardi

01/18/2023, 9:32 AM
Hi Jesse, I forwarded your message, will come back to you shortly
g

Gasper Vojevec

01/18/2023, 3:26 PM
If I understand the question correctly.... we do not have a resource that manages Cloud Provider Policies. However, we have an "Accounts" object that allows you to manage cloud provider account credentials (which would have associated policies) and then assign those accounts to particular resources. Was / is this answer helpful or have we missed the mark on what it was referring to?
j

Jesse Sanford

01/19/2023, 1:57 PM
Sorry more specifically I am asking if you have a way to centrally manage policies on what users are allowed to do with resources. Like for instance if there is a way to apply a policy that says for all users in my tenant, they must make sure that encryption at rest is enabled for any data storage, then inside the policy they have a way of listing the resource types and settings on those resources that must be enabled or users are denied
g

Gasper Vojevec

01/20/2023, 1:39 PM
@Jesse Sanford From the developers perspective: they don't get to choose how a resource is configured. Instead, this is decided by the resource definition that is defined by the Platform Team. So, from a policy perspective - the resource definitions can be centrally managed if needed.
j

Jesse Sanford

01/20/2023, 1:45 PM
I see, but no additional policy is applied at execution time?
g

Gasper Vojevec

01/20/2023, 2:09 PM
No, this is it.
26 Views