Question about user permissions. I read this bit of documentation about roles for GD Cloud:
https://www.gooddata.com/developers/cloud-native/doc/cloud/manage-organization/manage-permissions/
I'm not convinced I understand it. It'd be helpful if there was a way to manage users in the GD Cloud UI. Assigning users to groups, permissions to users, users to workspaces, etc are all things that feel easier to understand with visual aids rather than API.
In any case, I'm looking to create a user that has the ability to create child workspaces, more users, api tokens, and workspace data filter entities. The admin users can do this. However, want to limit all that functionality to a single workspace.
We have two main workspaces. One for our test environment and one for our production environment. They are only separated by their name. I want to eliminate the possibility of the API token associated with the user for our Test Environment being able to make changes to the production GD workspace. How can I achieve this?