Limit the permissions of a token

Hi Everyone,

One of the things I really like about fly is that you can spin up containers / apps very easily. Now I want to set this up as a Gitlab pipeline, whose sole purpose is to push a new image to, without it having any other permissions.

Is it already possible to box permissions from a certain token, or does a token have full access to everything?

Hi @daansk44

I believe tokens currently have the same permissions as the user that created them. So if you’re an admin then the token has access to everything.

1 Like

Are those documented anywhere?