I have some fairly typical pipelines that consist of many build and test jobs, followed by deployment jobs to dev, test, and production environments. The prod deployment job is configured to only run on a manual trigger. We would like the production deployment job to be secured such that only certain people in our company can trigger that. However, we want any developer on the project to be able to trigger runs of all the other jobs in the pipeline. The other jobs have automatic triggers, but it is a fairly common occurrence that we need to trigger a failed job again manually due to issues like an external server dependency being temporarily unreachable, etc.
TLDR: Is there any mechanism for securing the manual trigger for specific jobs in a pipeline, without locking out users from triggering other jobs in the pipeline?