[v11.0.x] Alerting: Add two sets of provisioning actions for rules and notifications #87572
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Backport 356a295 from #87149
What is this feature?
This PR adds two new sets of permissions that let administrators create custom roles to grant access to provisioning alert rules and notification configurations separately.
It does not replace already existing permissions.
Why do we need this feature?
To allow Grafana Enterprise users to grant access to rules API but not notifications provisioning APIs
Who is this feature for?
Special notes for your reviewer:
The new actions are not exposed independently. To test, you need to create a new custom role.
Example API Call
Example API Call
and then assign the new role to the user (user Id and role UID need to be replaced with values from responses)
Example API Call
Please check that: