Policy Introduction Policy Syntax Working with Policies Identifying Resources Granting Permissions Default Policies Policy Authoring Tutorial Policy Examples Policy Simulation Global Claims Policy Variables Policy Data Tutorial

Policy for Job Links

This section provides permissions and examples for policy for job link. In order to link jobs, the user must have not only permit link but also permit read on the job realm.

Job link policy example

The following example permits "dev" role to link jobs running in the /sandbox/dev namespace. Note: In order to link jobs, permit read, update is also required. If permit read is missing, job not found error will be thrown.

job::/sandbox/dev {
    if (role == "dev") {
      permit read, update, link
    }
}

Fine-grained job link

The following example permits "dev" role to link a job in the /dev/sourceJob namespace to a job in the /acme/targetJob namespace. Note that permit update is required on the job::/dev/sourceJob realm; otherwise, missing claim "permit update" policy error will be thrown.

job::/dev/sourceJob {
    if (role == "dev") {
        permit read, update, link
    }
}

job::/acme/targetJob {
    if (role == "dev") {
        permit read, link
    }
}

intro

Getting Started

Working with Jobs

Staging and Packages

Routes

Networks

Connecting Services

Policy and Governance

Developer Tutorials

API Documentation

Installing Apcera Platform

Configuring Apcera Platform

Operations

Reference Information

Policy for Job Links

Job link policy example

Fine-grained job link