How to Setup User Entitlements in a Team for Mobile App Security Projects

Learn how to start using entitlements to collaborate on mobile integration projects within an Appdome Team.

The Importance of Structured Team Roles in Mobile App Development

Development organizations invest heavily in creating mobile integration development cycles that meet their organizational needs. Project managers and DevOps team leads assign specific responsibilities to specific experts during the development cycle. This structured approach ensures that multiple people can work on the same app as a team efficiently. For instance, mobile development, security, and IT teams often collaborate to create fully integrated mobile apps for users.

Team-member entitlements enable you to limit each teammate to a specific task within the Appdome workflow. Entitlements, which are specific “right of use” rules established within teams, can be assigned to individual users for each step of the process. These steps include uploading apps, fusing one or more services, adding context, signing, or deploying the app. By confining users to particular tasks, you can prevent mistakes, such as a user responsible for signing the app accidentally fusing it, thereby streamlining mobile integrations.

This meticulous task assignment ensures that the right people are doing the right job, which accelerates the development cycle and is a fundamental part of any mobile integration process. Moreover, reliance on external integration processes could significantly impact well-oiled internal processes.

Prerequisites for using Team Entitlements

In order to use Appdome’s Teams and Entitlements, you’ll need:

• Appdome account – IDEAL GO or higher.
• An Appdome Team
• If you don’t have an Appdome account, click here to create an account.

Team Entitlements

 Appdome for Teams currently offers the following entitlements:

• BUILD_SECURITY: Using the Security tab
• BUILD_ACCESS: Using the Access tab
• BUILD_AUTHENTICATION: Using the Authentication tab
• BUILD_IDENTITY: Using the Identity tab
• BUILD_MANAGEMENT: Using the Management tab
• UPLOAD: Uploading an app
• BUILD: Enabling workflow actions by clicking on the Build button on UI or Make a Build API request
• CONTEXT: Adding Context to an app
• SIGN: Signing an app
• DEPLOY: Deploying an app
• DELETE: Deleting an app
• BUILD_ANTI_FRAUD: Using the Anti-Fraud tab
• EDIT_FUSION_SETS: Editing a Fusion Set
• RELEASE_FUSION_SETS_INTO – Entitlement to release a Fusion Set to another team
• COPY_FUSED_BUILDS_INTO: Copying builds from one team to another
• FREEZE_UNFREEZE_APPDOME_VERSION: Using the Fusion Set Summary screen to freeze and unfreeze the Appdome version
• ACCEPT_FUSION_SETS: Approve Fusion Sets received from another team by using the option to release security templates between teams.
• View Certified Secure – Access to download a certificate from the team to which the user belongs.
• ACCORDION_ANNOTATION: Add an edit annotation to each command section (accordion); for example, OS Integrity.
• DUPLICATE_TEAM – A “super-user” entitlement to duplicate an existing team with all its configurations (e.g., members and Fusion sets)
• View ThreatScope – Access to view ThreatScope data for the team to which the user belongs.
• DOWNLOAD_FILES_FROM_FUSION_SETS: Entitlement to download Fusion Set files.
• FUSION_SETS_VERSIONING: entitlement to create multiple fusion sets Prerequisites

Easy Steps to Configure User Entitlements in Mobile App Security Projects

Create a Team

To learn more about teams, please refer to the knowledge base article: How to Create Teams in Mobile DevSecOps Build System to Accelerate Delivery.

Edit Entitlements

1. In the Personal Area drop-down in the upper right side, select “Team Management”.
   
2. Click on the … next to the team’s name.
3. Click on Team Members and then Edit Member.
   
4. You will see a list of the team members and their Entitlements.
5. To remove an Entitlement, uncheck the associated box with that entitlement.
6. To add Entitlements, check the box.
   As a leader:
   • When opening a team, you can perform the following activities:
   • You can edit entitlements for all team members.
   • You can add members.
   • You can remove members.
   • You can change the team’s name and description.
   • You can enforce naming policy on the team fusion sets
   • You can enforce your organization’s domain verification on all team members.
   • You can edit the role of each team member.
   • You can request to delete a team.
   • You can leave the team.
     As a member:
     • You can view your entitlements.
     • You can view the roles of each team member.
     • You can view the team’s details.
     • You can leave the team.
7. Click Save to save your changes.
   

Congratulations! Each member of your Appdome Team now has the entitlements necessary to complete their work on Appdome.

Related Articles:

• How to Add Team Members with Entitlements and Roles from CSV in DevSecOps Build System
• How to Release Mobile App Security Templates between Teams
• How to Use Team Entitlements & Roles in Mobile DevSecOps Build System

If you have any questions, please send them our way at support.appdome.com or via the chat window on the Appdome platform.

Thank you!