Should All Users Have Their Own Org Credential?
Please note: This article does not apply to the org credential of the organization where Copado is installed. Each user must own org credentials in the org where Copado is installed. This is a prerequisite.
Ideally, all the users that work with Copado should have their own org credentials in each of the environments where they are working. However, this will entail creating a large number of records, so if you don’t want all the developers to have their own org credentials with a Git Snapshot linked to them, you can use default org credentials.
To enable an org credential as default, you only need to mark the Default Credential checkbox in the Org Credential record.
This will reduce the number of records that need to be created, but you will have to ensure org credentials are shared properly. Since the Org Credential object is set as private in the Sharing Settings, only the owner of the record can view and edit it. The Git Snapshot record s a child record of the Org Credential record in a master-detail relationship, therefore access to Git snapshots will depend on the parent record.
To prevent Insufficient access on cross reference entity errors when using default org credentials, you will need to make sure users have read/write access to the org credentials. You can do this using any of the options below:
The Share button in the Org Credential record.
Sharing rules for the Org Credential object.
The Modify All permission for the Org Credential object in the profile or permission set.