Role based access control (RBAC)
An OAuth-linked object that represents a human who has authenticated with the Astronomer deployment.
A named Airflow cluster that is owned by an individual or team.
A high-level, named bundle of policies and permissions that is used
to define a user’s access to a team and group of deployments, i.e.
user. These are customizable for each Astronomer deployment
as global options, and also definable on a team basis.
Workspaces contain a group of Airflow Cluster Deployments. The creator of the workspace can invite other users into it.
Bundles of permissions that are assigned to roles - for example
Manage team deployments.
The lowest level of our model is the permissions center around objects and
actions, for example: