How to Manage Services
Last updated
Last updated
Services define Resources and the Actions or permissions on those Resources.
Gopher includes some system Resources that consist of API endpoints for the Gopher Dashboard and Actions for each.
Gopher Security will be supporting additional Resource types in a future release that can be applied to limit User access to Resources within a peer-to-peer network.
Gopher customers can also import their own API endpoints and Actions into the Gopher dashboard.
A Policy is required to enforce permissions on Resources in a Service.
Sign in to the Gopher dashboard. If you do not have a Gopher account, refer to Sign Up for Gopher Dashboard for instructions.
From the Gopher dashboard home page, click Services.
The following Services are added to the Gopher Dashboard by the system then referenced from Gopher system Policies that enforces permissions on various modules of the Gopher dashboard.
ServiceModuleService
NetworkService
IAMUserService
IAMPolicyService
IAMOrganizationService
IAMGroupService
BillingService
Note: System generated Services cannot be modified or removed as this would prevent the root user from being able to manage the system.
Click a Service to view the Resources and Actions associated with the Service.
Resources are used to define the Actions that can act upon them.
Gopher includes some pre-defined system Resources that consist of API endpoints for the Gopher Dashboard.
Currently, the only Resources that are supported are API endpoints.
Additional Resource types will be supported in a future release to include network ports and protocols, devices and postures, files, applications, executables, etc.
To view system Resources that allow access to the functions in the Gopher Dashboard go to Services and select Resources.
From the drop-down menu at the top of the Resources section select a service to see its associated Resources.
Actions define the permissions for Resources in Service policies.
There are three available actions: List, Read and Write.
Each Resource in a Service policy needs to have one or more Actions defined for it to allow access to the Resource.
Manage Actions from the Services menu by clicking Actions.
Select a Service from the drop-down menu to view the Actions associated with each Service.
Enter a Name and Description for the Actions.
Expand the Services section and select a Service.
Expand the Actions section and click List, Read or Write. (A separate policy needs to be created for each Action type, even if you are applying it to the same Resource(s).)
Expand the Resources section. The Resources that were previously defined for the Service will be listed. Select one or more Resources that the Action you select in Step 4 should apply to by checking Any in this Account.
Click Create Action.
Once you have created the Action you will see it listed in the Actions page for the corresponding Service.
Repeat Steps 1-6 to create additional Actions for Resources > Services.