# Overview

{% hint style="info" %}
This is an older version of the document. To view the most recent version of the document, click [here](https://docs.opsmx.com/products/orchestration-module-opsmx-enterprise-for-spinnaker-oes/additional-feature-configuration/secure-spinnaker/authorization/overview).
{% endhint %}

## Authorization

### Overview of Authorization <a href="#overview-of-authorization" id="overview-of-authorization"></a>

* Alike authentication, Spinnaker has various mechanisms of authorization. In this page we are going to explore, on how to setup and configure Fiat, an authorization microservice of Spinnaker.
* First of all, what is Authorization got to do with Spinnaker?
  * Using Spinnaker’s - Fiat authorization mechanism one can define roles and responsibilities for a user. To explain in other words, an admin can define what can user see and access while accessing Spinnaker, by restricting access.

### Requirements to Setup Authorization <a href="#requirements-to-setup-authorization" id="requirements-to-setup-authorization"></a>

* Primarily, its mandate to have Authentication setup for Gate.
* To enable persistent Storage (S3 or GCS), ensure to have front 50 configured.
* Enable role any one of the role provider from the below
  * Using Google Groups by accessing G Suite Admin Console
  * GitHub Team
  * LDAP server
  * SAML Identity Provider (IdP) – In SAML user roles are fixed, and cannot be changes until the user needs to re-authenticate.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.opsmx.com/opsmx-context-graph-and-data-fabric/additional-resources/previous-releases/isd-3.10/orchestration-module-opsmx-enterprise-for-spinnaker-oes/additional-feature-configuration/secure-spinnaker/authorization/overview.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.