What would be helpful is to have: Stack-level permissions (e.g. grant preview/apply without needing space admin), Custom roles like: Context editor Policy-only maintainer Read-only + preview, Delegation via IdP-managed groups, Decoupling access from Spaces (Currently forced to move stacks or grant admin to transfer ownership) Avoiding PIM escalations just to test policies or edit contextWe're running into limitations with Spacelift’s current permission model, especially the lack of granularity beyond space-level admin.
Right now it’s either full admin or very limited user, nothing in between. We want to avoid moving stacks just to change ownership.Changing ownership of a stack often requires migrating state or temporary admin elevation, which introduces risk and friction.
Customers with compliance requirements (e.g. HIPAA, SOC 2) need least-privilege enforcement and auditability.
Please authenticate to join the conversation.
⬆️ Gathering votes
💡 Feature Requests
8 months ago
Get notified by email when there are changes.
⬆️ Gathering votes
💡 Feature Requests
8 months ago
Get notified by email when there are changes.