Authentication and Access Control

Authentication

You can log in to the console to access CodeArts Deploy. You can also use core CodeArts Deploy functions by calling REST APIs or SDKs.

CodeArts Deploy performs authentication on multiple nodes, such as API Gateway, frontend framework, and backend APIs, for multiple times to ensure access validity.

When accessing CodeArts Deploy through the console, you need to enter the correct username and password. When calling APIs, CodeArts Deploy supports the following authentication modes:

• Token: Requests are authenticated using tokens. By default, token authentication is required to access the CodeArts Deploy console.
• AK/SK authentication: Requests are encrypted using an Access Key ID (AK) / Secret Access Key (SK) This method is recommended because it provides higher security than token-based authentication.

Access Control

CodeArts Deploy controls operations in horizontal and vertical authentication modes. Your can add, delete, modify, and query applications, and cluster, and deploy applications.

Horizontal authentication: Based on the isolation logic between CodeArts projects, CodeArts Deploy authenticates and intercepts members of the same tenant who do not belong to the same project to ensure that members of different projects do not perform unauthorized operations.

Vertical authentication: Verify the permissions of different member roles in the same project to ensure that the permissions of each member role in the project are clearly defined and prevent unauthorized operations.