Public Ideas Portal
Security team at prospect wanted the ability to disable use of certain plugins across the organization, such as authentication plugins they didn't want in any environment (KeyAuth/BasicAuth as an example).
Additionally they wanted the ability to add (globally for each control plane) logging and analytics plugins via an Org level policy so there would be no compromises or inconsistencies across the organization. We talked through how we typically recommend customers to achieve this with the use of CI/CD pipelines, but the security team did not like the additional need to manage this governance of policy through additional tooling/automations outside of the platform.
There is no way to do this in the platform natively today, and the only way to do this would be via an org-wide policy that filters down to each control plane that cannot be changed by teams/users outside of a role with org wide policy rights.
