Bug 1857843
Summary: | Cluster upgrade notifications have no RBAC checks | |||
---|---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Samuel Padgett <spadgett> | |
Component: | Management Console | Assignee: | Robb Hamilton <rhamilto> | |
Status: | CLOSED ERRATA | QA Contact: | Yadan Pei <yapei> | |
Severity: | medium | Docs Contact: | ||
Priority: | medium | |||
Version: | 4.6 | CC: | aos-bugs, jokerman, pstrick | |
Target Milestone: | --- | |||
Target Release: | 4.6.0 | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | No Doc Update | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 1877083 (view as bug list) | Environment: |
Version: 4.6.0-0.ci-2020-07-16-091855
Cluster ID: 818a2c63-5921-4991-96ea-0e983fb26e17
Browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0
|
|
Last Closed: | 2020-10-27 16:15:14 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1877083 | |||
Attachments: |
Description
Samuel Padgett
2020-07-16 16:26:03 UTC
Created attachment 1702608 [details]
Verification screenshot
Checked by cluster-reader user, just as attached screenshot, RBAC works now. Verified on 4.6.0-0.nightly-2020-07-25-091217 Created attachment 1714197 [details]
user without RBAC could not see the clusterversion by url which is hidden from menu
Created attachment 1714198 [details]
hidden menu
Created attachment 1714199 [details]
user has edit permission could see the Edit button
The user has only cluster-reader RBAC and visit Cluster Settings page and see the clusterversion, but could not see the Edit button. This was Verified as comment 4. The user has no cluster-reader RBAC could not see the menus and will get Restricted Access error message if visit directly by url. Attached the screenshot for compare. The user has RBAC of ClusterVersion edit permission could see the Edit button on Cluster Versions page. Also attached the screenshot for compare. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:4196 |