We are announcing a big update to team management on workspace, project & app level that enables a more fine grained governance to your members across the different Bitrise products you use.
Product access for CI & Release Management
We have now separated roles that give permissions for CI & Release Management resources. Before this change, anyone that had a role on a project was granted base permissions for Release Management, but your feedback was that you wanted more explicit setting of these permissions. We also heard the need for more access levels inside Release Management.
- Now when you invite or edit access of new members you need to define which product you want the new member to have access to and with what role.
- Project Admins will still receive access to both products to be able to govern access on a project level.
- We also introduced the App Tester role under the Release Management product that is a step below Release Manager.
- From this point some roles have been converted to CI-only access, these are: Platform Engineer, Developer and Tester/QA.
Global access groups
We wanted to unify the experience of direct access & group-level access management. It also gives you the ability to use these groups for SAML & SCIM since those only support group-level access control.
- When you set someone as e.g. Developer on all projects (current & upcoming) they will be automatically added to a global access group. You can also manually add members directly to these groups.
- These groups have been created for you for all roles, and you can also see global access with a icon next to a role.
- Global access groups’ names can be changed, however their role is fixed and they can’t be deleted.
Setting Release Management roles on app & project basis
- You can add members to have access to Release Management either by specific apps under a project or all *current* apps under that project.
- Ability to manage Release Management roles on a Workspace level
- The permission set for Release Managers have changed slightly with the new addition of App Testers. You can check these changes out in the documentation.
- Global access groups or Outside Contributors are not yet supported for Release Management
- Workspace API Tokens are not yet supported for RM roles but we’re working on rolling that out soon
What happens with existing members’ access
We are migrating user roles to cause the least amount of disruption for you when making this transition and not take away permissions that members previously had either explicit or implicit.
- Workspace roles are unchanged (Owner, Manager, Contributor, Viewer)
- Admins & Release Managers will remain unchanged and will have the same permissions as before
- Platform Engineers, Developers & Tester/QA members received the App Tester role if they have not been set as Release Manager before. These members receive this new role via direct access or via a group depending on how they are set up today.
UX improvements across team management
We completely overhauled multiple pages across team management and have gradually rolled them out over the last weeks, these include:
- New member & group details page instead of the small popup that shows in more detail and at a glance what a member or group has access to
- New collaboration page under project settings that reflects these changes & also added a new search function that was frequently requested
- New member list page that now shows product access instead of specific roles
- And of course new invite and edit flows that incorporate product access setting