2159459 – [MDR RDR] DRPolicy list page is not visible to the application users

Bug 2159459 - [MDR RDR] DRPolicy list page is not visible to the application users

Summary: [MDR RDR] DRPolicy list page is not visible to the application users

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat OpenShift Data Foundation
Classification:	Red Hat Storage
Component:	management-console
Sub Component:
Version:	4.12
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	urgent
Target Milestone:	---
Target Release:	ODF 4.12.0
Assignee:	gowtham
QA Contact:	Shrivaibavi Raghaventhiran
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	2140556 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-01-09 16:52 UTC by gowtham
Modified:	2023-08-09 16:46 UTC (History)
CC List:	5 users (show)
Fixed In Version:	4.12.0-164
Doc Type:	No Doc Update
Doc Text:	Need a clear document for different DR users permissions, Admin and Application users
Clone Of:
Environment:
Last Closed:	2023-02-08 14:06:28 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	red-hat-storage odf-console pull 586	0	None	Merged	Bug 2159459: [release-4.12] Fix DRPolicy list page access issue for application users	2023-01-10 08:22:40 UTC
Github	red-hat-storage odf-console pull 587	0	None	open	Bug 2159459: [release-4.12-compatibility] Fix DRPolicy list page access issue for application users	2023-01-10 08:22:42 UTC

Comment 5 gowtham 2023-01-10 10:54:17 UTC

*** Bug 2140556 has been marked as a duplicate of this bug. ***

Comment 6 Shrivaibavi Raghaventhiran 2023-01-30 14:00:14 UTC

Tested version:
----------------
OCP - 4.12.0-0.nightly-2023-01-24-150415
ODF - quay.io/rhceph-dev/ocs-registry:4.12.0-169

Test steps:
-----------
# Create openshift user
1. Go to hub cluster --> User management --> User --> Add IDP
2. Create username and htpassword and add in the necessary details
3. verify "oc get user"
$ oc get user

NAME       UID                                    FULL NAME   IDENTITIES
sraghave   bdc40bf8-4d32-4579-acc7-db1c6f606569               htpasswd:sraghave

# Create clusterrolebindings
1. local cluster --> User management --> roles
2. Search for below roles one by one
   * drclusters.ramendr.openshift.io-v1alpha1-view
   * drpolicies.ramendr.openshift.io-v1alpha1-view
3. Click roles --> search for above --> Add Rolebinding to each role mentioned above 
   * Select Cluster-wide rolebinding (Cluster-wide rolebinding is applied to all the above roles)
   * Name can be anything
   * Subject --> user
   * Subject name --> Username (openshift username that we created in step 1)


Validate:
----------
1. Login to hub cluster using htpasswd instead of kube:admin using username and password
2. All clusters --> Data services --> Checked for DRPolicy application page
DRpolicy was shown, but we cannot edit/delete drpolicy

With all the above observation, Moving the BZ to verified.

Note You need to log in before you can comment on or make changes to this bug.