Specified persons only can approve the workflow

When we have a deploy job to production, we need only Managers to approve the workflow. Currently anybody following the project can approve the workflow. Better still can you trigger a email with the approval link?

  • Guest
  • Apr 3 2018
  • Shipped
  • Attach files
  • Tom Santero commented
    10 Jul 19:08

    Any update on this? This is a highly coveted feature.

  • Jorge Tovar commented
    October 24, 2019 17:10

    "Using restricted context, you can control who has access to credentials for all the downstream jobs. "

    It makes more sense to avoid the execution of the job instead of failing with unauthorized!

  • Kunal Jain commented
    March 29, 2019 20:49

    Using restricted context, you can control who has access to credentials for all the downstream jobs. 

  • Quan Chau commented
    March 18, 2019 18:57

    Sweet. My managers have been bugging me about this. We want to restrict who can deploy to prod but let everybody deploys to QA/staging. We have different contexts with same keys for credentials. This will let us control who can trigger job with credentials for productions.

  • Kunal Jain commented
    March 18, 2019 18:30

    Thank you so much for your interest! 

    We are in process of rolling out `restricted contexts` feature that will help with this particular use case. Please free to review the docs PR if you are interested. 


  • Frank Pinto commented
    March 14, 2019 18:03

    @Kunal @Nathan
    Any additional information or update on the status of this feature?

  • Danny Varner commented
    February 08, 2019 17:07

    @Nathan any update on this?

  • Igor Miltchman commented
    January 24, 2019 20:28

    @Kunal Do you have an update?

  • Kunal Jain commented
    August 28, 2018 22:44

    We are currently testing this feature internally. I will update this thread when we are ready to roll it out. Thank you so much for your patience.

  • Nick Roosevelt commented
    August 28, 2018 20:34

    We can't use CD on CircleCI until something like this is implemented. Restricting to users named in the contect or an option to restrict approval to github repo admins would either be OK. But we have new developers and we have consultants who have write access to the repo, so we need to be able to have production deploy trigger restricted.

  • Andrew Zitek commented
    August 22, 2018 19:57

    The holds feature is nice. I don't think we have a use case as is. If we can limit who can approve the holds we will start using it as soon as it is available.

  • Quan Chau commented
    August 10, 2018 19:41

    I am also looking forwards to this feature. We want to allow only a group of user to approve a job in workflow before the next job of deploying to production.

  • Oleg commented
    June 21, 2018 10:22

    Any news about this feature ?

  • Jonathan commented
    June 07, 2018 01:18

    That is good enough for our use case, thanks for the info, and looking forward to it.

  • Nathan Dintenfass commented
    June 06, 2018 18:26

    The first feature that will allow something like this will be the ability to protect contexts to be executed only by certain people in a group -- this will locate the restriction on the downstream job rather than the approval itself, however, so we may also provide approval-level restrictions later.

  • Jonathan commented
    June 06, 2018 14:05

    @Nathan can you share any update on this? if any

  • Nathan Dintenfass commented
    April 03, 2018 20:06

    We have something along these lines in the works. Stay tuned...