Limiting access to only specific Environments - Environment
You can limit the Environments users in a role can see and access using the AllowEnvironment or DenyEnvironment rules.
If no environment rules are active, the user can see all Environments.
Wildcards are not supported.
AllowEnvironment rule limits the users in the role to just see and access the Environments with the defined Environment
DenyEnvironment rule allows the user in the role to see and access all Environments except those that are denied.
The next article is Example on Attaching roles to users