Using tokens to deploy APIs

So many questions today 😆 .
I am collaborating with another dev on a project and I’d like them to be able to deploy the api but:
1. I don’t necessarily want to add them as an administrator - is there a non-admin role, or some kind of auth token they can use to deploy the api?
2. Can I specify which datasets they can deploy for (e.g. only development and not production)?
Thanks!

Not that I am aware of. You may need to create a small app in-front to proxy these requests.

Thanks Wes. Looks like custom access control is actually an enterprise feature https://www.sanity.io/docs/access-control

Ah, well, if you need to use the other enterprise features too it may be worth getting it. Personally I would just spend a little extra time writing a small-app to manage it 🙂. I wish the enterprise features were sold separately as the price jump is insane.

You do have the option of creating a token with the "Deploy studio" role, which will let you deploy both studios and GraphQL APIs.

Hi that sounds really useful! I see

Administrator,

Read+Write

, and

Read

roles in both the GUI and CLI. How can I tap into this

deploy studio

role magic?
I’ve been really appreciating your help today!

🤦 I think have figured it out - using a

deploy studio

token via the api settings. 🎉

Yep, that's it 🙂You'll have to use

SANITY_AUTH_TOKEN=<token> sanity graphql deploy

to use it

🤦 I think have figured it out - using a

deploy studio

token via the api settings. 🎉

Yep, that's it 🙂You'll have to use

SANITY_AUTH_TOKEN=<token> sanity graphql deploy

to use it