1516293 – no Grafana authentication/authorization

Bug 1516293 - no Grafana authentication/authorization

Summary: no Grafana authentication/authorization

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Gluster Storage
Classification:	Red Hat Storage
Component:	web-admin-tendrl-monitoring-integration
Sub Component:
Version:	rhgs-3.3
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Ankush Behl
QA Contact:	sds-qe-bugs
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1516301
TreeView+	depends on / blocked

Reported:	2017-11-22 12:23 UTC by Lubos Trilety
Modified:	2019-05-08 18:34 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-05-08 18:34:48 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Lubos Trilety 2017-11-22 12:23:51 UTC

Description of problem:
Grafana is used without any authentication/authorization. If someone knows URL he/she can use Grafana the same way as any RHGSWA user. No secure connection is granted using link from RHGSWA UI to Grafana.

Version-Release number of selected component (if applicable):
tendrl-selinux-1.5.3-2.el7rhgs.noarch
tendrl-commons-1.5.4-3.el7rhgs.noarch
tendrl-api-httpd-1.5.4-2.el7rhgs.noarch
tendrl-grafana-selinux-1.5.3-2.el7rhgs.noarch
tendrl-ansible-1.5.4-1.el7rhgs.noarch
tendrl-node-agent-1.5.4-3.el7rhgs.noarch
tendrl-ui-1.5.4-3.el7rhgs.noarch
tendrl-grafana-plugins-1.5.4-4.el7rhgs.noarch
tendrl-notifier-1.5.4-2.el7rhgs.noarch
tendrl-api-1.5.4-2.el7rhgs.noarch
tendrl-monitoring-integration-1.5.4-4.el7rhgs.noarch

How reproducible:
100%

Note You need to log in before you can comment on or make changes to this bug.