https://github.com/kostis-codefresh/intro-argocd-rbac

Introduction to Argo CD RBAC and AppProjects
https://github.com/kostis-codefresh/intro-argocd-rbac

argocd kubernetes rbac

Last synced: 5 months ago
JSON representation

Introduction to Argo CD RBAC and AppProjects

• Host: GitHub
• URL: https://github.com/kostis-codefresh/intro-argocd-rbac
• Owner: kostis-codefresh
• Created: 2024-09-27T09:06:31.000Z (7 months ago)
• Default Branch: main
• Last Pushed: 2024-11-26T07:40:47.000Z (5 months ago)
• Last Synced: 2024-11-26T08:30:01.672Z (5 months ago)
• Topics: argocd, kubernetes, rbac
• Homepage: https://codefresh.io/blog/multi-tenant-argocd-with-application-projects/
• Size: 8.79 KB
• Stars: 0
• Watchers: 1
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Securing Argo CD in a Multi-Tenant Environment with Application Projects

Let’s take a look at a full example. In our imaginary company, we have 2 developer teams (A and B) that continuously deploy applications. We also have infrastructure applications (i.e., cert-manager) handled by the operator team.

Here are our requirements:

* Admin/operator can view/edit all applications (including infra apps).

* Team B can only view/edit their own applications and nothing else.

* Team A can view/edit their own applications and view-only applications from team B.

* No developer from either team can view the infrastructure applications.

* No developer can delete any application (even their own).

* All applications (including infra) can only be synced from a specific GitHub organization/user.

Read the full blog at https://codefresh.io/blog/multi-tenant-argocd-with-application-projects/