Implementing a role-based access control system

In a DevOps Code ClearCase® environment, where users perform different roles, you may want to restrict access to certain DevOps Code ClearCase operations based on role. You can use a trigger definition and script that implement a role-based access control system.

You can also share scripts; see Sharing triggers among different types of platform.

The following mktrtype command creates a preoperation trigger type called role_restrictions.

cleartool mktrtype -nc -ucmobject -all -preop mkstream,mkbl,mkactivity \
-execunix "perl  /net/jupiter/triggers/role_restrictions.pl" \
-execwin  "ccperl \\pluto\disk1\triggers\role_restrictions.pl" \
role_restrictions@\my_pvob

The trigger type fires when a user attempts to make a baseline, stream, or activity.