Guard buttons around iam:projects:update
#4300
Labels
auth-team
anything that needs to be on the auth team board
automate-auth
bug 🐛
Something isn't working
customer-reported
issues reported by customers
emergent
Milestone
Describe the problem
Users who have
iam:projects:update
permissions, and therefore should be able to see theCreateRule
button on the project details page, cannot see the button bc of this guard:<app-authorized [allOf]="['/apis/iam/v2/projects', 'post']">
Users who do not have permission to update projects, should not be able to see the
Add Condition
orSave
buttons on the Rule detail view.Replication Case
Create a project Foo with associated policies.
Create a user and add them to the Project Foo Viewers policy.
Sign in as that user and observe the exposed buttons.
Add a new policy to give that user permissions to update projects. Observe that the "Create Rule" button is not visible.
Possible Solution
These buttons should have
app-authorized
guards foriam:projects:update
on their project.The text was updated successfully, but these errors were encountered: