Organization Management
The Orgs and Policies view is designed to mimic your management hierarchy of your catalog of applications and business units.
Hierarchy And Inheritance
Lifecycle uses a parent-child relationship when managing organizations and applications. Applications are 'children' of organizations and organizations are the 'children' of the root organization. This is referred to as the organizational hierarchy and is used for establishing ownership and inheritance.
Inheritance refers to re-using policy and configuration defined at a higher hierarchical level. A policy defined at the root organization will be inherited by all organizational levels. Policies defined on an organization will apply to the organizations and applications descendant from it.
As a best practice we recommend setting policy at the root organization level while using application categories and overrides to scope policies to the correct applications. Alternatively we recommend setting access controls to the organization level to limit access to only that which the users is a stakeholder of.
Root Organization
The Root Organization is an entity at the top of the system hierarchy that allows you to set policy globally across all organizations and applications.
Multi-level Hierarchy Model
Sonatype Lifecycle supports a multi-level organization hierarchy model, consisting of a top-level organization (Root Organization) linked with organizations at multiple lower levels.
This model provides flexibility when distributing the organizational structure for application ownership to mimics the management hierarchy of your organization's business model. This decentralizes and distributes managing policies among lower organizational levels.
 |
Organization A owns multiple applications
Organization B sets policy and administers 2 sub-organizations
Org B.1 is responsible for the team Org B.1.1 and owns 3 applications as well.
Org B.2 manages 2 teams each with their own applications
Use case scenarios
Match the organizational hierarchy of different business units
Report on the risk profile of applications specific to a business unit
Apply policy to specific teams and groups of applications
Decentralize access control to individual business units
Support micro-services type architecture by grouping applications
Navigating the hierarchy
When you have view permissions, the configuration for the Root Organization is visible in the main section. Similarly, the drop down for Organizations lists the organizations your have permissions to view in Lifecycle.
The listed organizations are the top-level organizations set up directly under the Root Organization.
The number in parentheses () indicates the number of organizations and/or applications that are linked to this organization.
Search for a specific organization or application by entering its name in the filter located at the top of the left navigation bar.
 |
Organization configuration view
Selecting an organization from the list will update the view for this organization.
The navigation lists the names of organizations and applications that are children to the selected organization.
The breadcrumbs at the top indicate the nesting level of the selected organization.
The right side view shows the configuration for the selected organization.
 |
Tree view of the hierarchy
Select Tree View to see how organizations and applications are related at various levels.
You will see a tree view showing organizations and applications you have permission to view. Expand the tree to view other organizations and applications under it.
Enter the name of the organization or application in the search filter to navigate to it directly.
 |