Manage users¶
See first: User
Set up a new user¶
Configure your JIMM controller to have a DNS address and share it with the user.
Add a Juju controller to JAAS.
Add the user to JAAS.
See more: Manage a user’s relation to an entity
Assuming the user already has the juju CLI client installed, get the user to log in to JIMM using the DNS address. For example:
juju login test-jimm.localhost:443 -c jaas
At this point juju controllers should show the jaas controller and commands like juju models should work work. However, to perform any meaningful operations, the user will also need access to a cloud by adding a cloud (or being granted access to one via juju grant-cloud), adding cloud credentials, and using juju update-credentials with the --controller jimm flag to make their credentials available to JIMM (which will store them in Vault). For example, assuming the localhost cloud:
juju update-credentials localhost --controller jimm
At this point the user can start doing whatever the permissions you’ve granted them allow them to do, for example, add a model and deploy applications to it.
Manage a user’s relation to an entity¶
Note
This permissions mechanism supplements the Juju way of granting a user access to controllers, clouds, models, and offers, and can be used in addition to it. See more: Juju | Manage a user’s access level or Terraform Provider Juju | Manage a user’s access level.
See Manage relations.