User with read only api access across all orgs/spaces


john mcteague <john.mcteague@...>
 

What is the best way to create a user account that has read only permission
on apps across all orgs and spaces?

It looks like a user with scope cloud_controller.read will work if the user
is also added to all spaces. I would prefer to avoid that latter step.

Is there an alternative?

As background, we have a component in our deployment that needs to obtain
the current location (dea) of any given app and we are doing so using the
/v2/apps/<guid>/stats endpoint and currently a user with admin level
permissions on CF.

Thanks
John.

Join cf-dev@lists.cloudfoundry.org to automatically receive all group messages.