Implementing Custom Roles and Granular Security Permissions with GitLab

Custom roles allow group Owners or instance administrators to create roles specific to the needs of their organization. Granular security permissions can be applied to these roles to limit the actions a user can perform. This enables you to follow the principle of least privilege within GitLab.

The principle of least privilege is a concept in which a user's access rights should be limited to the bare minimum required for them to complete the tasks required within their respective role. By implementing PoLP you can look to enhance your organization's security posture in the following ways:

* Reduction of Attack Surface
* Protection against Human Error
* Adherence to Compliance
* Reduced System Downtime

OUTLINE:
0:00 - Introduction
2:21 - Prerequisites
2:53 - Guest Role with Minimal Permissions
4:00 - Creating a Custom Role with Granular Permissions
5:14 - Assigning a Custom Role to a Group/Project Member
5:58 - Custom Role in Action
6:53 - Conclusion

OTHER VIDEOS IN THE SERIES:

USEFUL LINKS:

Thanks for watching! Be sure to subscribe and follow @awkwardferny and @Gitlab on twitter for similar content.