Bug 2159459

Summary: [MDR RDR] DRPolicy list page is not visible to the application users
Product: [Red Hat Storage] Red Hat OpenShift Data Foundation Reporter: gowtham <gshanmug>
Component: management-consoleAssignee: gowtham <gshanmug>
Status: CLOSED CURRENTRELEASE QA Contact: Shrivaibavi Raghaventhiran <sraghave>
Severity: urgent Docs Contact:
Priority: unspecified    
Version: 4.12CC: amagrawa, hnallurv, muagarwa, ocs-bugs, odf-bz-bot
Target Milestone: ---   
Target Release: ODF 4.12.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 4.12.0-164 Doc Type: No Doc Update
Doc Text:
Need a clear document for different DR users permissions, Admin and Application users
 Story Points: ---
Clone Of: Environment:
Last Closed: 2023-02-08 14:06:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 5 gowtham 2023-01-10 10:54:17 UTC 
*** Bug 2140556 has been marked as a duplicate of this bug. ***
Comment 6 Shrivaibavi Raghaventhiran 2023-01-30 14:00:14 UTC 
Tested version:
----------------
OCP - 4.12.0-0.nightly-2023-01-24-150415
ODF - quay.io/rhceph-dev/ocs-registry:4.12.0-169

Test steps:
-----------
# Create openshift user
1. Go to hub cluster --> User management --> User --> Add IDP
2. Create username and htpassword and add in the necessary details
3. verify "oc get user"
$ oc get user

NAME       UID                                    FULL NAME   IDENTITIES
sraghave   bdc40bf8-4d32-4579-acc7-db1c6f606569               htpasswd:sraghave

# Create clusterrolebindings
1. local cluster --> User management --> roles
2. Search for below roles one by one
   * drclusters.ramendr.openshift.io-v1alpha1-view
   * drpolicies.ramendr.openshift.io-v1alpha1-view
3. Click roles --> search for above --> Add Rolebinding to each role mentioned above 
   * Select Cluster-wide rolebinding (Cluster-wide rolebinding is applied to all the above roles)
   * Name can be anything
   * Subject --> user
   * Subject name --> Username (openshift username that we created in step 1)


Validate:
----------
1. Login to hub cluster using htpasswd instead of kube:admin using username and password
2. All clusters --> Data services --> Checked for DRPolicy application page
DRpolicy was shown, but we cannot edit/delete drpolicy

With all the above observation, Moving the BZ to verified.