Context | Down To Zero

Every entity inside DTZ needs to have a parent context. This represents the organizational structure to hold an entity, allow access control, and provides accounting and billing. Every user has by default attached to its session. So whenever a user is logged in, regardless of the method (apikey, oauth, etc.) the session already has a context attached to it.

flowchart LR 
  uid[Identità utente] -- "ha accesso" --> context
  subgraph context
  Context[Nucleo del contesto] -- "possiede" --> Objectstore
  Context -- "possiede" --> Containers
  Context -- "possiede" --> Rss2Email
  Context -- "possiede" --> E@{ shape: processes, label: "Altri servizi"}
  end

The current context is always shown in the title bar on the top left.

Contesto DTZ

Changing the context can be achieved by selecting the new context from the drop-down menu.

A new context can be created through the main page or the following link.

https://dtz.rocks/new/ | Nuovo contesto

In Terraform, the context is implicitly derived from the user session or fetched using the dtz_context data source—even if it’s not explicitly declared in the resource block.

Amministratore del contesto

Context admin is a role that allow the owning identity the right to control rights and roles regarding the context. The creator of the context always gets assigned the role of context admin.

Also a new identity is created for the context, which serves as service principle within the context. The identity is created with the following alias.

admin@{context_id}.dtz.rocks

All Context admins automatically get access to all used services within the context.