How can we improve the platform?

← Atlas

Allow modifying federation role mappings via API

We would like to use the new role mapping feature for federated authentication to assign Atlas roles based on LDAP groups assigned to our users.

However, we frequently create new projects programmatically and would need to manage the permissions to these new projects using role mapping. However, there is no public API available to manage role mappings programmatically. In addition, enabling role mapping disables the ability to manage roles for federated users with the API. So, at present, role mappings and permissions can only be managed manually through the UI.

We would like to request the ability to modify role mappings (and possibly other federation features) through the Atlas API.

23 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Christian shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

1 comment

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Carlos Benito commented  ·   ·  Flag as inappropriate

    any update about this feature? In My case from my organization it doesnt make senses, you can manage all permissions and access from your AAD, wich one you can automatizate with a pipeline and a script and terraform or ansible later for creating a project and cluster, but the creation of a role mapping must be manually!!!
    Please we need this feature or some workaround ASAP!!!

Atlas: IAM

Categories

Feedback and Knowledge Base

(thinking…)