In some cases you may need to create custom roles, to define or limit access to specisif resources aor applications, beyond the limits and ranges of an application. Some examples follow.
¶ Limited cross-application access
You have two applications (A & B), and there are 5 people in A that require access to both A and B resources.
Create a new role:
In the resource definitions that you want to give access to, also add this role to the Security:
security:
id: my security section
processor: validate_token_roles
roles:
- Administrator
- Custom role
¶ Limited access to a sub-set of consumers
You have a resource in an application that you want to only open up to a sub-set of consumers.
Create a new role, as above
In the resource definition that you want to give access to, only add this role to the Security:
security:
id: my security section
processor: validate_token_roles
roles:
- Custom role