2039781 – [GSS] OBC is not visible by admin of a Project on Console

Bug 2039781 - [GSS] OBC is not visible by admin of a Project on Console

Summary: [GSS] OBC is not visible by admin of a Project on Console

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	Console Storage Plugin
Sub Component:
Version:	4.8
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Target Release:	4.10.0
Assignee:	Sanjal Katiyar
QA Contact:	Mugdha Soni
Docs Contact:
URL:
Whiteboard:
Depends On:	2031705
Blocks:
TreeView+	depends on / blocked

Reported:	2022-01-12 12:40 UTC by Sanjal Katiyar
Modified:	2022-03-10 16:39 UTC (History)
CC List:	13 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:	2031705
Environment:
Last Closed:	2022-03-10 16:38:43 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	openshift console pull 10824	0	None	open	Bug 2039781: OBC navItem hidden for non-cluster admin	2022-01-12 12:47:31 UTC
Red Hat Product Errata	RHSA-2022:0056	0	None	None	None	2022-03-10 16:39:00 UTC

Comment 6 Mugdha Soni 2022-02-16 14:20:11 UTC

Hi Sanjal

Could you please mention in which version is it fixed ?

Thanks
Mugdha

Comment 7 Sanjal Katiyar 2022-02-17 05:51:25 UTC

Hi Mugdha,
It should have been fixed for OCP 4.10 & ODF 4.10

Thanks.

Comment 8 Mugdha Soni 2022-02-17 11:45:38 UTC

Hi 

**Tested with the following builds :-

OCP :- 4.10.0-0.nightly-2022-02-16-171622
ODF :- 4.10.0-156


** Steps performed for validation of the fix :-

(a) Created a user named "mugdha"and project "test".
(b) Added admin role to this user of the project.
(c) Validated the access of OBC from CLI and Console.

** OBSERVATIONS :-

(a) The role "mcg-operator.v4.10.0-noobaa-odf-ui-dc8bf97cd" was automatically created by noobaa.
(b) After passing the rolebinding.yaml as mentioned below , the OBC section was present under Storage in UI .

[root@localhost mcg-3]# cat RoleBinding.yaml 
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
  name: ui-roles-binding
  namespace: openshift-storage
subjects:
  - kind: User
    apiGroup: rbac.authorization.k8s.io
# Change this to the user who requires to access OBC page
    name: tom
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: Role
  name: mcg-operator.v4.10.0-noobaa-odf-ui-dc8bf97cd

(c) User was able to create and list OBC in UI under cli as well .

Screenshots for the same are present under "https://docs.google.com/document/d/14Eth44WMG3-U4Gggjxbsmict5PDFKlSyKNqFV1Z7J30/edit?usp=sharing"

Moving this bug to verified state .

Thanks 
Mugdha

Comment 10 errata-xmlrpc 2022-03-10 16:38:43 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.10.3 security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:0056

Note You need to log in before you can comment on or make changes to this bug.