Roles in SilverStripe Platform are used to ensure a good workflow exists between a web team and their customer. They restrict access to certain parts of the infrastructure and permit only selected users to perform some actions, such as deployment to production or accessing production data.
Roles are structured in a hierarchy, with permissions being inherited upwards from a Team Member up to Stack Manager. A stack manager can submit a helpdesk ticket to give more permissions to team members. For example, a stack manager could request that a team member is given permission to deploy to production or access production snapshots.
Stack Managers have financial and contractual authority over the stack. As a rule of thumb, a Stack Manager is needed to perform any changes with financial impact, such as changing the stack size.
Only stack managers can add and remove users from a stack.
Release Managers can either be technical or non-technical. Their main role is approving changes relating to uptime or features.
Only Stack Managers and Release Managers can approve deployments.
Deployers are usually lead or senior members of the team. They have sufficient knowledge to formulate proposals for changes with uptime or feature impact, such as modifications to environment variables, SSL certificates, creation of virtual stacks and changes to the whitelist.
If circumstances warrant it, Deployers can bypass the approval process.
Everyone else working on the stack is a Team Member. Team Members can snapshot and deploy to UAT & test environments directly, as well as request deployments to production.
They cannot bypass the approval process.
|UAT1||Production1||Configuration2||Temporary CMS access||Add/Remove Users||Modify Stack|
- Includes access to server logs for this environment.
- Includes configuration of variables, domains, SSL and whitelists.