Limit the permissions of a token

daansk44 · November 9, 2022, 4:11pm

Hi Everyone,

One of the things I really like about fly is that you can spin up containers / apps very easily. Now I want to set this up as a Gitlab pipeline, whose sole purpose is to push a new image to fly.io, without it having any other permissions.

Is it already possible to box permissions from a certain token, or does a token have full access to everything?

charsleysa · November 9, 2022, 8:14pm

Hi @daansk44

I believe tokens currently have the same permissions as the user that created them. So if you’re an admin then the token has access to everything.

daansk44 · November 25, 2022, 12:16pm

Are those documented anywhere?

Topic		Replies	Views
Access Token Scopes	3	245	March 21, 2023
Securing app access on a user basis	1	567	June 3, 2022
security questions Questions / Help flyctl , security	7	239	March 27, 2024
Private Fly Container Registry Questions / Help	2	609	May 24, 2022
Disable ssh? Questions / Help	6	394	December 20, 2022

Limit the permissions of a token

Related Topics