Custom Namespace-level roles/permissions in Temporal Cloud

vlad.nasca · July 18, 2024, 1:06pm

Hello,

We are in the process of setting up Temporal Cloud.
According to the documentation (User management - Temporal Cloud feature guide | Temporal Documentation) there are a couple of pre-defined account-level and namespace-level roles. As shown in the tables from the documentation link above, each of those roles has a pre-defined list of permissions attached.
Would it be possible for us to add custom namespace-level roles, or tweak the existing roles?

In our use-case, for one particular category of users we would like to assign the “write” namespace-level role, but we also need to restrict access to some of this role’s permissions (like DeleteNamespace/UpdateNamespace). So we would need a role that is more capable than “read”, but has less permissions than “write”.

Thank you!

antonio.perez · July 22, 2024, 6:53pm

Hi @vlad.nasca

sorry we missed this,

Would it be possible for us to add custom namespace-level roles, or tweak the existing roles?

this is not currently possible, could you open a ticket at https://temporalsupport.zendesk.com so we can create a feature request?

Thank you

Topic		Replies	Views
Rbac support in Temporal Community Support general-impl	3	561	July 10, 2024
Authorization, Untrusted workflow creation and namespace authentication Community Support auth	21	4556	July 29, 2024
Temporal-web to show only particular namespace workflows based on user authentication Community Support namespace , web-ui	3	609	October 21, 2021
Ability to restrict the namespaces / workflow to show Community Support web-ui	2	496	April 16, 2021
What are the minimum USER/ROLE Cassandra permissions Temporal requires? Community Support cassandra	1	476	November 19, 2021

Custom Namespace-level roles/permissions in Temporal Cloud

Related topics