New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

$staff or $customer role in global context scope anomaly #87

IanKruger opened this Issue Jul 11, 2018 · 0 comments


3 participants

IanKruger commented Jul 11, 2018

If a user does not have $staff or $customer role in global context, he can’t change scope because getting the tenant name for the tenant header requires call to /v1/tenant/{id} which is protected with tenants:view rule. Once again not sure if this is FAD (functioning as designed)

@IanKruger IanKruger added the bug label Jul 11, 2018

@Vuader Vuader added this to To Do in Beta/First Release via automation Jul 19, 2018

@Vuader Vuader moved this from To Do to In Progress in Beta/First Release Jul 19, 2018

Vuader pushed a commit to Vuader/infinitystone that referenced this issue Jul 23, 2018

Bug fix of TachyonicProject/photonic#87.
Note now rbac on /v1/tenant(s) is more lax. Should thus seriously
consider TachyonicProject/photonic#89

Vuader added a commit to TachyonicProject/infinitystone that referenced this issue Jul 23, 2018

@Vuader Vuader closed this Jul 23, 2018

Beta/First Release automation moved this from In Progress to Completed Jul 23, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment