Bug 2041769
| Summary: | Pipeline Metrics page not showing data for normal user | ||||||
|---|---|---|---|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Vikram Raj <viraj> | ||||
| Component: | Dev Console | Assignee: | Vikram Raj <viraj> | ||||
| Status: | CLOSED ERRATA | QA Contact: | spathak <spathak> | ||||
| Severity: | medium | Docs Contact: | Olivia Payne <opayne> | ||||
| Priority: | high | ||||||
| Version: | 4.10 | CC: | cbremble, cjerolim, jakumar, kjeeyar, mrobson, nmukherj, steven.barre | ||||
| Target Milestone: | --- | ||||||
| Target Release: | 4.11.0 | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||
| Doc Text: |
Cause: The pipeline metrics page is showing data to the none admin users.
Consequence: All the API calls for the metrics query are failing with a 403 error.
Fix: Used the `prometheus-tenancy` API to get the metrics data for the Pipeline.
Result: The pipeline metrics page shows all the data and Graphs to the none admin user with at least view access to the Namespace.
|
Story Points: | --- | ||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2022-08-10 10:42:31 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 2067983 | ||||||
| Attachments: |
|
||||||
Verified as console developer user (with View only permission) and able to view the pipeline metrics as expected. build: 4.11.0-0.nightly-2022-03-27-140854 Thanks to Vikram I could verify this now on 4.11.0-0.nightly-2022-04-23-153426. It was required to give the user additional view permissions on the openshift-pipeline namespace. I created a follow-up bug #2078565 so that the Metrics tab is not shown if the user has not have enough permissions. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Important: OpenShift Container Platform 4.11.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2022:5069 |
Created attachment 1851539 [details] Pipeline metrics network calls are failing with 403 error Description of problem: Pipeline Metrics page not showing data for the normal user. All the API calls are failing with 403 error. Version-Release number of selected component (if applicable): 4.10 and 4.9 How reproducible: Steps to Reproduce: 1. Login as a normal user with only self-provisioned role binding to a namespace. 2. Create a namespace and a pipeline to it 3. navigate to the Pipline -> Pipeline details -> Metrics Actual results: API calls are failing with 403 error Expected results: API calls should not fail with any error. Additional info: