RBAC - Policy creation with OIDC

“We successfully enabled OIDC authentication for the Datahub frontend using OKTA as identity provider. We’d also like to take full advantage of the fine-grained authorization layer in Datahub by creating a set of policies to tailor different access privileges to different user groups.

While this already works alright, it would be nice if this initial policy creation could be handled when bootstrapping the frontend. The use case is to eliminate the need for this manual step upon creating a new environment and use a git-flow in order to manage the policies.

This would improve environment reproducibility and make testing and change management easier.” - Original Slack message