Ability to use security groups for contexts used by github app type pipelines
in progress
d
daniel.lund@pendo.io
We want to be able to use github apps to centralise circle ci config for some of our deployments so its easy to propagate changes to the pipelines and avoid copy pasting the same pipeline in multiple repo's. However, we also want to restrict access to contexts such as our prod deploy context for this group of services but GitHub app based pipelines don't support this in their current state.
The ability to restrict context access via security groups is a vital piece of the puzzle as we don't want ALL members of our GitHub org accessing these contexts
d
daniel.lund@pendo.io
At the moment github app type pipelines still don't support security groups on contexts.
We have contexts that are restricted to specific GitHub groups already, its more the fact we cant use those restrictions if we have a GitHub app type pipeline is the problem: https://circleci.com/docs/guides/integration/github-apps-integration/#restrict-a-context-to-a-security-group
Nathan Fish
in progress
Nathan Fish
planned
We are working on group apis to manage contexts. This should allow you to sync (with some work on your part) GitHub security groups to CircleCI groups and contexts.
https://circleci.com/docs/api/v2/#tag/Groups for group management
and
https://circleci.com/docs/api/v2/#tag/Context/operation/createContextRestriction for context restrictions by group.