Open
Description
Current Issue:
Currently, anyone can create, edit, or delete repositories in Backstage, which leads to several issues:
- Incomplete or improperly formatted repositories
- Repositories being deleted before they should be removed
- Potential security concerns due to unrestricted access
Remediation:
- Implement an approval cycle for repository management actions (create, edit, delete) in Backstage.
- When a user (restricted to SourceFuse GitHub users) attempts to create a new repository, the request should be sent for approval to designated Project Administrators.
- Similarly, when a user attempts to edit or delete an existing repository, the request should go through an approval process before the action is executed.
- The approval cycle should involve notifications to the appropriate Project Administrators, who can review the request and either approve or reject it based on predefined criteria.
- This solution will ensure that all repository management actions are reviewed and approved by authorized personnel, maintaining integrity, proper formatting, and preventing accidental or unauthorized modifications.