Skip to content

Commit 9357d6a

Browse files
AdamBouhmadjhutchings1
AdamBouhmad
and
jhutchings1
authored
changelog for access fine-grained permissioning (#25569)
* changelog for access fine-grained permissioning * small changes * add additional links * justin's changes Co-authored-by: Justin Hutchings <[email protected]> * upload new image for fine-grained perms * make note work properly --------- Co-authored-by: Justin Hutchings <[email protected]>
1 parent e4bc0a5 commit 9357d6a

File tree

2 files changed

+32
-0
lines changed

2 files changed

+32
-0
lines changed

src/assets/images/changelog/fundamentals/2025-10-01-fine-grained-permissioning-ux.png

386 KB
Loading

src/content/changelog/fundamentals/2025-10-01-fine-grained-permissioning-beta.mdx

Lines changed: 32 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,32 @@
1+
---
2+
title: Fine-grained Permissioning for Access for Apps, IdPs, & Targets now in Public Beta
3+
description: Expanding Role-Based-Access-Control with resource-level controls in Cloudflare Zero Trust.
4+
products:
5+
- fundamentals
6+
date: 2025-10-02
7+
---
8+
9+
import { Aside } from '@astrojs/starlight/components';
10+
11+
12+
Fine-grained permissions for **Access Applications, Identity Providers (IdPs), and Targets** is now available in Public Beta. This expands our RBAC model beyond account & zone-scoped roles, enabling administrators to grant permissions scoped to individual resources.
13+
14+
### What's New
15+
- **[Access Applications](https://developers.cloudflare.com/cloudflare-one/applications/)**: Grant admin permissions to specific Access Applications.
16+
- **[Identity Providers](https://developers.cloudflare.com/cloudflare-one/identity/)**: Grant admin permissions to individual Identity Providers.
17+
- **[Targets](https://developers.cloudflare.com/cloudflare-one/applications/non-http/infrastructure-apps/#1-add-a-target)**: Grant admin rights to specific Targets
18+
19+
![Updated Permissions Policy UX](~/assets/images/changelog/fundamentals/2025-10-01-fine-grained-permissioning-ux.png)
20+
21+
<Aside>
22+
23+
During the public beta, members must also be assigned an account-scoped, read only role to view resources in the dashboard. This restriction will be lifted in a future release.
24+
- **Account Read Only** plus a fine-grained permission for a specific App, IdP, or Target
25+
- **Cloudflare Zero Trust Read Only** plus fine-grained permission for a specific App, IdP, or Target
26+
27+
</Aside>
28+
29+
For more info:
30+
31+
- [Get started with Cloudflare Permissioning](/fundamentals/manage-members/roles/)
32+
- [Manage Member Permissioning via the UI & API](/fundamentals/manage-members/manage)

0 commit comments

Comments
 (0)