在流中限制组件级别的用户访问 [英] Restrict user access at component level within a stream

问题描述

是否可以防止用户将更改集传递到流中的组件?

Is it possible to prevent users from delivering change sets to a component within a stream ?

例如，"Integration"流永远都不会看到开发人员的任何交付:只有集成团队才能够修改该"Integration"流.

For instance, an "Integration" stream should never see any deliver from the developers: only the integration team should be able to modify that "Integration" stream.

但是，现在，项目区域的任何协作者都可以创建一个回购工作区，并且通过更改其流目标(即添加"Integration"流并将其设置为"current")，可以能够传送到那条小溪！?

And yet, right now, any collaborator of the project area are able to make a repo workspace and, by changing its flow target (i.e. adding that "Integration" Stream and setting it "current"), are able to just deliver to that stream!?

如何防止这种情况?

推荐答案

是的，但是限制在于授权具有特定角色的任何人进行交付，而不是只限制一个人的名字.
因此，如果该人在该项目区域中没有与其个人资料相关联的特定角色，则他/她将无法在该信息流中进行投放.

Yes, but the restriction is rather about authorizing the deliver for anyone having a specific role, rather than restraining just one person by name.
So if that one person doesn't have a specific role associated with his/her profile in that Project Area, he/she won't be able to deliver on that stream.

您需要通过操作行为"部分为传递(服务器)"操作添加一个挂钩.参见插图:

You need to add a hook, through the "Operation Behavior" section, for the "deliver (server)" operation. See the illustration:

钩子限制更改集交付到流中的组件"将仅允许具有角色"release_engineer"(仅为我们的项目创建的自定义角色)的用户在流"字段中提及的流上交付，例如组件/权限"数组中列出的组件.

The hook "Restrict Change set delivery to components in a stream" will allow only the users with the role "release_engineer" (custom role created just for our project) to deliver on the Stream mentioned in the field "Stream", for the components listed in the "Component / Permissions" array.

这篇关于在流中限制组件级别的用户访问的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！