Identity and Access Management

InfraWeave does not manage any authentication or authorization, it is solely relying on the cloud providers access management. The credentials set in your environment variables (or config) will be used for every request.

AWS

A user will only be able to access what they are they can access in their account.

API

There is only one entrypoint to interface with the InfraWeave control plane; the API function. This means you can allow/restrict access to InfraWeave by controlling access to this function.

This means that a user can have very limited access but still be able to create infrastructure using the control plane.

Note

Currently it is a combined function for read/write. But this will be split up to be able to allow more granular access control.