Permissions docs
This commit is contained in:
23
equinix/design/permissions-migration/test-plan.org
Normal file
23
equinix/design/permissions-migration/test-plan.org
Normal file
@@ -0,0 +1,23 @@
|
||||
#+TITLE: Testing IAM-Runtime checks for Metal API
|
||||
#+AUTHOR: Adam Mohammed
|
||||
|
||||
* What's changed
|
||||
|
||||
* Stages of testing
|
||||
- Initial Canary
|
||||
- Run terraform against internal canary URL
|
||||
- Slow roll to production
|
||||
- Watch for errors
|
||||
- In-production warn mode
|
||||
- Observe for discrepancies between cancancan/iam-runtime
|
||||
- Runtime winning mode
|
||||
- Completed
|
||||
|
||||
* Monitoring
|
||||
- Trace attributes that are relevant
|
||||
|
||||
- Dashboards
|
||||
- Create dashboard around cancancan disagreements
|
||||
- Create dashboard where resource was not metal org/project/user
|
||||
|
||||
* Handling broken cases
|
||||
Reference in New Issue
Block a user