User-Experience

In Review

Is your feature request related to a problem? Please describe.Currently a role can only be assigned to a user. This is not scalable, particularly when combined with SSO and JIT provisioning of users and groups. Any organization with a non-trivial number of users makes it problematic to have to manage roles at a user level.Describe the solution you'd likeEnhance the security model to allow assignment of role(s) to group(s) with users inheriting permissions from the groups they are members of. This is a pretty standard model.Describe alternatives you've consideredn/aAdditional context<img src="https://vault.featureos.app/uploads/attachment/upload/thumb-9a07a8e7be3679b76f6df9e52cec7915.png">

Is your feature request related to a problem? Please describe.Currently a role can only be assigned to a user. This is not scalable, particularly when combined with SSO and JIT provisioning of users and groups. Any organization with a non-trivial number of users makes it problematic to have to manage roles at a user level.Describe the solution you'd likeEnhance the security model to allow assignment of role(s) to group(s) with users inheriting permissions from the groups they are members of. This is a pretty standard model.Describe alternatives you've consideredn/aAdditional context

Someone

 **Is your feature request related to a problem? Please describe.**

Currently a role can only be assigned to a user. This is not scalable, particularly when combined with SSO and JIT provisioning of users and groups. Any organization with a non-trivial number of users makes it problematic to have to manage roles at a user level.

**Describe the solution you'd like**

Enhance the security model to allow assignment of role(s) to group(s) with users inheriting permissions from the groups they are members of. This is a pretty standard model.

**Describe alternatives you've considered**

n/a

**Additional context**

![](https://vault.featureos.app/uploads/attachment/upload/thumb-9a07a8e7be3679b76f6df9e52cec7915.png)



Support roles assigned to groups

Subscribe to post