Team-Based Security

In addition to fine-grained, object-level security, Cloud CMS also offers simplified team-based security.  Team-based security works provides an easier, sweeping way to manage security.  By adding someone to a team, you describe broad stroke authorities that apply to all objects within a container.  For example, you might create a "consumers" team for a Project.  The "consumers" team grants the Consumer role.  Once someone is added to that team, they will receive the Consumer role for everything in a project, including content, users and more.

Team-based security is lightweight and easy to use and model's the broad, sweeping-stroke security found in GitHub, BitBucket and many other SaaS products.  If you want fine-grained, object-level security, Cloud CMS also provides this.  Simply limit your use of Team-based security and assign permissions at an object or object container-level.

In Cloud CMS, teams are hierarchical and they inherit from one another.  If you add someone to the "consumers" team at the Platform level, they will by inheritance receive Consumer rights to all project stacks and project stack datastores.  The hierarchy order is:

    Platform > Stack > Data Store

To work with teams, you can do the following:

  1. Go to the admin console (https://<yourdomain>.cloudcms.net/admin)
  2. Navigate to the resource you want to work on (Platform, Stack or Data Store)
  3. On the left-hand side, click on Teams

To create a team:

  1. Click on the "New Team" button
  2. Give your team a name and a unique key
  3. Pick the roles (authorities) that you team will grant
  4. Click "Create" to create the team:

To add users to the team:

  1. Pick your team from the teams list
  2. At the bottom, you'll see a list of current team members.
  3. Click on the large Query button
  4. Uncheck the "Only Display Group Members" checkbox.
  5. Pick the domain where the user exists that you want to add
  6. Click the "Query" button at the bottom
  7. A list of available users will appear.
  8. Find the user that you want to add and click "Add" to add them to the team.

To remove users from the team:

  1. Pick your team from the teams list.
  2. At the bottom, you'll see a list of current team members.
  3. Find the user that you want to remove and click "Remove" to remove them from the team.