Evaluate: Granular Access Control for Development Environment
Title: Granular Access Control for Development Environment
Description: To ensure secure and manageable access to our development environment, we aim to implement granular access control. This will allow us to better align with security best practices and provide role-based permissions for developers and external contributors.
We are currently evaluating three options for integrating Single Sign-On (SSO):
- Fitko SSO (UCS)
- Opencode SSO (preferred option by @holz)
- Independent SSO (e.g., Keycloak or similar)
The goal is to enable fine-grained access control while minimizing administrative overhead and ensuring a smooth integration into our existing workflow.
Steps:
- Evaluate feasibility and integration effort of each option
- Align with stakeholders (e.g., @holz, infrastructure team)
- Decide on the SSO provider and define access control policies