RBAC & Regex Permissions
On a shared host, you usually do not want every developer seeing every container. Assign allowed_containers patterns per user: exact names, wildcards, or full regex.
Action rights (two layers)
First enable the action on the server (ALLOW_START, ALLOW_STOP, ALLOW_RESTART, ALLOW_DELETE, ALLOW_SHELL). Then grant the matching can_* flag to each user in Admin. Both must be true, including for administrators.
Pattern matching
Exact name match
A plain string like redis matches only a container named exactly redis.
Wildcard matching
backend-* matches backend-api and backend-worker.*redis* matches any name containing redis.
Full regular expressions
Patterns with ^ or $ are treated as raw regex. Example: ^prod-.*-app$.
Multiple rules per user
Separate patterns with a comma (e.g. backend-*, *web-server, ^nginx-prod$). The user sees containers matching any rule.
Edit or suggest changes on GitHub.