Managing Permissions in Cosmo Just Got Easier with Groups

WunderGraph introduced a new role-based access control system called "Groups" in its Cosmo platform to address inconsistencies in permissions and provide centralized management across federated GraphQL APIs. This system allows easier management of permissions by grouping users and API keys under unified rules, streamlining access to namespaces, graphs, and subgraphs while ensuring that users see only the resources they have permission to access. The system replaces previous disparate configurations with a more flexible and secure model, enhancing both user experience and security by hiding unauthorized resources from view and enforcing permission checks throughout the platform. The changes were driven by customer feedback and aim to simplify permission management and audits, providing roles like Admin, Viewer, and Publisher for both users and API keys. Existing users and API keys have been automatically migrated to this new system, although it is recommended to transition to Groups for improved clarity and maintainability. The introduction of Cosmo Groups represents a significant enhancement in how WunderGraph manages access control, making it easier for organizations to define access once and apply it consistently across their systems.