Bug 1468277 - Allow dedicated-admins to list/delete oauthclientauthorizations
Summary: Allow dedicated-admins to list/delete oauthclientauthorizations
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: OpenShift Online
Classification: Red Hat
Component: RFE
Version: 3.x
Hardware: Unspecified
OS: Unspecified
unspecified
medium
Target Milestone: ---
: 3.x
Assignee: Abhishek Gupta
QA Contact: Chuan Yu
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2017-07-06 14:26 UTC by bmorriso
Modified: 2021-03-11 15:24 UTC (History)
11 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2018-03-05 18:15:44 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description bmorriso 2017-07-06 14:26:16 UTC 
Description of problem:

Currently members of the dedicated-admin group are allowed to create and delete users but they can still be blocked from deleting users because the dedicated-admin group is not allowed to list/delete oauthclientauthorizations:

# // Running this command as dedicated-admin user john.doe
# oc delete user foo.bar
Error from server (Forbidden): User "john.doe" cannot list all oauthclientauthorizations in the cluster


Allowing dedicated-admins to list/delete oauthclientauthorizations would resolve the above issue.

Version-Release number of selected component (if applicable):
3.4.1.18
Comment 1 Jackie 2017-10-15 22:16:18 UTC 
Its been more than 3 months, is there a ETA for this bug fixing?
Comment 6 Abhishek Gupta 2018-02-20 18:37:24 UTC 
Moved the bug to Online
Note You need to log in before you can comment on or make changes to this bug.