Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
This project is now read‑only. Starting Monday, February 2, please use https://ibm-ceph.atlassian.net/ for all bug tracking management.

Bug 2276590

Summary: [Ceph Dashboard] dashboard landing page displays Access Denied when logged in with read-only user
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Vinayak Papnoi <vpapnoi>
Component: Ceph-DashboardAssignee: Pedro González Gómez <pegonzal>
Status: CLOSED ERRATA QA Contact: Vinayak Papnoi <vpapnoi>
Severity: high Docs Contact: Akash Raj <akraj>
Priority: unspecified    
Version: 7.1CC: akraj, ceph-eng-bugs, cephqe-warriors, pegonzal, tserlin, vereddy
Target Milestone: ---Flags: akraj: needinfo-
Target Release: 7.1z1   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: ceph-18.2.1-218.el9cp Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2024-08-07 11:21:54 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Vinayak Papnoi 2024-04-23 08:45:39 UTC 
Created attachment 2028471 [details]
dashboard landing page displaying access denied when logged in with read-only user

Description of problem:

When a read-only user is used to login to the dashboard UI , the landing page (and multiple other pages) display Access Denied along with a message "Sorry, you don't have permission to view this page or resource."


Version-Release number of selected component (if applicable):

Ceph 7.1
18.2.1-149.el9cp


How reproducible:
1/1


Steps to Reproduce:

1. Deploy a ceph cluster with monitoring stack and dashboard enabled
2. Login to the dashboard using admin and create a read-only user
3. Logout and log back in using the read-only user created


Actual results:

dashboard landing page displays "Access Denied"


Expected results:

All pages should be visible to a read-only user. The admin operations only should be inaccessible.


Additional info:
Comment 9 errata-xmlrpc 2024-08-07 11:21:54 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 7.1 security and bug fix update.), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2024:5080
Comment 10 Red Hat Bugzilla 2024-12-06 04:25:07 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days