This message was deleted.
# atlantis-community
s
This message was deleted.
p
Basic auth is to access the UI
there is no concept of groups or users in the UI
you could deploy an oauth proxy in front but anyone will be able to click that button if they have access
b
Where do you exactly run Atlantis?
On Google Cloud you could secure it with IAP (Identity Aware Proxy), and then grant access to the Atlantis UI via a Google login.
☝️ 1
Which works very well and is easy to setup.
s
Runs in an EKS cluster
j
so, my dev's have no access to atlantis
SRE can access the UI via Okta.
Dev's could potentially see logs in Loki or w/e'
but in general, there is nothing in the atlantis UI, that would assist a developer more then the errors/outputs they get back to them in gitlab
👍 1
p
PRs are welcome
j
honestly, the only thing I think that would be benficial, would be some semblance of a
yes im still running i swear
n
@Seth Floyd we run ours in AWS with a WAF & ELB in front. The WAF allows the details of the plans to get piped back from
/jobs/*
to the github webhook
☝️ 1