Bug 2087512

Summary: [RFE] Add support for ACL colorization in PCS
Product: Red Hat Enterprise Linux 8 Reporter: gchin
Component: pcsAssignee: Tomas Jelinek <tojeline>
Status: NEW --- QA Contact: cluster-qe <cluster-qe>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 8.7CC: cluster-maint, idevat, mlisik, mpospisi, omular, tojeline
Target Milestone: rcKeywords: FutureFeature, Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description gchin 2022-05-17 21:14:11 UTC 
Description of problem:

We have added a new feature to Pacemaker 2.1, and we would like it to be supported by pcs.

The feature is a new cibadmin command-line flag, the show-access flag, which displays an annotated version of the CIB with permissions information with respect to a command-line-provided user. The information can be displayed in the form of colors, text, or namespaces. In the case of colors, the parts of the CIB that the user has access to are colored as follows: green for writable, blue for readable, red for denied.

In Pacemaker, an example usage is `cibadmin --show-access=color --query --user tony`. A possible equivalent syntax in pcs might `pcs cluster cib --show-access=color --user tony`.
Comment 1 Tomas Jelinek 2022-05-24 08:20:55 UTC 
This may be available as a subcommand of 'pcs acl', or an option of 'pcs cluster cib', or both.