Description of problem: There's is no "log out" button on the Graphana web ui. On support cases it's been mentioned that the oauth token gets expired after 24 hours, so the user might have to login again to the web UI of Grafana and Prometheus. This still doesn't give customers a way to forcefully close the session and feels like a possible security issue. Version-Release number of selected component (if applicable): OCP 3.11 How reproducible: always Steps to Reproduce: Login into graphana. Close tab. Reopen. Actual results: Still logged in Expected results: Users can click a button to end their session Additional info: From the customer's point of view, this is a bug. I understand it can be a RFE, but then the security implications of this should be addressed somewhere (maybe docs?).
tested with cluster-monitoring-operator:v3.11.248, cookie expiration time for alertmanager/prometheus/grafana is 24h
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:2990
Dear Red Hat, Our customer asked the same request as this bugzilla for OCP4. The request of Comment #0 is to add logout button to prometheus and grafana, but https://github.com/openshift/cluster-monitoring-operator/pull/837 seems not to implement the feature requested by Comment #0. That's very weird for us. How did Red Hat handle Comment #0's request? Does Red Hat have a plan to implement logout button for prometheus and grafana? Please let us know the above information if possible. (I have no permission to read private comment) Best Regards, Masaki Hatada
Hello, Seems like it's not resolved on Openshift 3.11/Grafana. Any progress on this issue? Thanks, Ferdous
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days