Hi Xavier,
Tested with the following basic one and works:
description: project context.
context:
project: 'RUNDECK_3.4'
for:
resource:
- allow: '*'
adhoc:
- allow: '*'
job:
- allow: '*'
node:
- allow: '*'
by:
group: invite
---
description: app context.
context:
application: 'rundeck'
for:
project:
- match:
name: 'RUNDECK_3.4'
allow: '*'
storage:
- match:
path: 'keys/RUNDECK_3.4/.*'
allow: '*'
by:
group: invite
Make sure that another ACL does not interfere with the current one.
Feel free to modify it :-)