@Maaax Maaax thanks for clarifying. We have seen similar requests before, and I can see why you would want different personas to have different access permissions. However, in the Git-like model of lakeFS, a branch is simply a pointer to a commit. So the way I see it, even if we enforce some kind of branch-level read access control, a commit will still always be accessible using its ID. Moreover, a single commit may have multiple branches pointing to it, so other branches may allow you to access this commit as well.
Hence, such a mechanism would become more of a convenience "filter by role" thing, and not a security feature, which is what RBAC intends to be.
That being said, our product team
@Oz Katz @Tal Sofer may have deeper thoughts. Are you willing to
open an issue about this so they can take a look?