Separate Controls per Directory

Terrateam Configuration

Terrateam behavior can be configured via a config.yml. This file is located in a directory named .terrateam at the root of your Terraform repository: .terrateam/config.yml.

See Configuration documentation for details.

Define separate policies per directory.

dirs:
  aws/qa:
    tags: [aws, qa]
  aws/production:
    tags: [aws, production]
access_control:
  policies:
    - tag_query: aws qa
      plan: ['*']
      apply: ['*']
    - tag_query: aws production
      plan: ['*']
      apply: ['team:sre']

Everyone can Plan but SRE can only Apply Separate Controls per Workspace