Bug 1886154
| Summary: | System roles are not present while trying to create new role binding through web console | ||
|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Rejeeb <rabdulra> |
| Component: | Management Console | Assignee: | Cyril <cajieh> |
| Status: | CLOSED ERRATA | QA Contact: | Yadan Pei <yapei> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 4.5 | CC: | aos-bugs, cajieh, jokerman, spadgett, yanpzhan, yapei |
| Target Milestone: | --- | Keywords: | UpcomingSprint |
| Target Release: | 4.7.0 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Enhancement | |
| Doc Text: |
Feature: System roles are not present while trying to create new role binding through web console
Reason: Users want to be able to select system role in the Role name dropdown while creating the role binding.
Result: Working as expected.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2021-02-24 15:23:52 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1920530 | ||
|
Description
Rejeeb
2020-10-07 18:44:47 UTC
Slack conversation: https://coreos.slack.com/archives/C6A3NV5J9/p1604338907029000 @Rejeeb- Please see links below for the requested code: https://github.com/openshift/console/blob/master/frontend/public/components/RBAC/role.jsx#L21 https://github.com/openshift/console/blob/master/frontend/public/components/RBAC/bindings.jsx#L322 @rabdulra I don't know of any specific reason than what Sam mentioned in slack conversation - https://coreos.slack.com/archives/C6A3NV5J9/p1604338985029100?thread_ts=1604338907.029000&cid=C6A3NV5J9 @rabdulra Need to investigate further why Role name dropdown being empty Checked on ocp 4.7 cluster with payload 4.7.0-0.nightly-2021-01-10-070949. 1. Open the cluster webconsole, select "Role Bindings" sub-menu under the "User Management" menu. 2. Click the "Create Binding" button in the right corner. 3. Select the dropdown box under "Role Name" section. 4. We could see there are system roles eg, system:image-puller, present in the drop down menu. But all the system roles have "CR" in resource icon which represents ClusterRole, shouldn't they have "R" in resource icon? Same issue in the "User Management"->"Roles" list for system roles. Pls correct me if I'm wrong. @yanping I am not sure of the right resource icon. Let me check with @spadgett It can have CR or R depending on whether it's a cluster role or namespaced role. I'd guess almost all of the system roles are cluster roles. The CR is expected. 1. Open the cluster webconsole, select "Role Bindings" sub-menu under the "User Management" menu. 2. Click the "Create Binding" button in the right corner. 3. Select the dropdown box under "Role Name" section. 4. We can see system roles (such as system:image-puller/system:image-pusher etc) are present in the drop-down menu. 1. Open the cluster webconsole, select the "Role" sub-menu under "User Management" menu. 2. Click on the desired system role. 3. Click "Add Role Binding" option under the "Actions" dropdown box in the right corner. 3. "Role Name" is just shown with the role name we selected Verified on 4.7.0-0.nightly-2021-01-17-153039 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2020:5633 |