Custom Roles for Organizational Permissions #586
Labels
enterprise administration
Feature: Enterprise server administration
ga
Feature phase: Generally available
GHES 3.14
GHES 3.14
github enterprise
Product SKU: GitHub Enterprise
identity
Feature: Github identity
shipped
Shipped
Comments
github-product-roadmap
added
admin-cloud
preview
ankneis
added
enterprise administration
github-product-roadmap
added
identity
ankneis
added
ga
github-product-roadmap
added
GHES 3.14
|
This has shipped with GHES 3.14: https://docs.github.com/en/[email protected]/admin/release-notes! |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Summary
Enterprise customers will have the ability to craft custom organization level roles from fine grained permissions. This will work in a similar way to the existing Custom Repository Roles feature. Admins will be able to create custom roles at the organizational layer, which grant permissions on both the organization (e.g. creating a GitHub app) and the repo level (viewing code).
Intended Outcome
Organizational admins can delegate organizational responsibilities and privileges safely, reducing the number of admins in an organization. This allows the creation of :
Admins can also grant org-wide permissions on repos, ensuring that teams with cross-cutting responsibilities can easily and automatically have the permissions they need to get their work done (for example, giving a security team
readpermissions on all repos).How will it work?
The organization
ownerrole will continue to exist, but organizations can now create custom roles that exist in betweenmemberandowner. These roles can be assigned to both users and teams inside the organization. The roles can contain both organization permissions (the ability to make a change to the organization) and repository permissions (the ability to interact with all of the repos in the organization).The text was updated successfully, but these errors were encountered: