Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Grant editor and viewer access to profiling #100594

Merged
merged 2 commits into from Oct 13, 2023
Merged

Grant editor and viewer access to profiling #100594

merged 2 commits into from Oct 13, 2023

Conversation

danielmitterdorfer
Copy link
Member

With this commit we amend the viewer and editor roles so that access to the index patterns related to Universal Profiling is possible. The editor role gets the same permissions as viewer for these index patterns because it does not make sense to write to these indices directly (i.e. instead of the collector / symbolizer doing that).

@danielmitterdorfer
Grant editor and viewer access to profiling
9e06aed 
With this commit we amend the `viewer` and `editor` roles so that access
to the index patterns related to Universal Profiling is possible. The
`editor` role gets the same permissions as `viewer` for these index
patterns because it does not make sense to write to these indices
directly (i.e. instead of the collector / symbolizer doing that).
@danielmitterdorfer danielmitterdorfer added >bug :Security/Authorization Roles, Privileges, DLS/FLS, RBAC/ABAC auto-backport-and-merge Automatically create backport pull requests and merge when ready v8.11.0 test-update-serverless v8.12.0 v8.10.4 labels Oct 10, 2023
@elasticsearchmachine elasticsearchmachine added the Team:Security Meta label for security team label Oct 10, 2023
@elasticsearchmachine
Copy link
Collaborator

Hi @danielmitterdorfer, I've created a changelog YAML for you.

@elasticsearchmachine
Copy link
Collaborator

Pinging @elastic/es-security (Team:Security)

jakelandis
jakelandis approved these changes Oct 11, 2023
View reviewed changes
Copy link
Contributor

@jakelandis jakelandis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM (also sent a message over slack)

@danielmitterdorfer danielmitterdorfer merged commit e2c1e0f into elastic:main Oct 13, 2023
16 checks passed
@danielmitterdorfer danielmitterdorfer deleted the add-profiling-to-viewer branch October 13, 2023 05:30
@danielmitterdorfer danielmitterdorfer mentioned this pull request Oct 13, 2023
Merged
@elasticsearchmachine
Copy link
Collaborator

💚 Backport successful

Status Branch Result
8.11

danielmitterdorfer added a commit to danielmitterdorfer/elasticsearch that referenced this pull request Oct 13, 2023
@danielmitterdorfer
Grant editor and viewer access to profiling (elastic#100594)
f5f548f 
With this commit we amend the `viewer` and `editor` roles so that access
to the index patterns related to Universal Profiling is possible. The
`editor` role gets the same permissions as `viewer` for these index
patterns because it does not make sense to write to these indices
directly (i.e. instead of the collector / symbolizer doing that).
elasticsearchmachine pushed a commit that referenced this pull request Oct 13, 2023
@danielmitterdorfer
Grant editor and viewer access to profiling (#100594) (#100792)
e064650 
With this commit we amend the `viewer` and `editor` roles so that access
to the index patterns related to Universal Profiling is possible. The
`editor` role gets the same permissions as `viewer` for these index
patterns because it does not make sense to write to these indices
directly (i.e. instead of the collector / symbolizer doing that).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jakelandis jakelandis jakelandis approved these changes

Assignees
No one assigned
Labels
auto-backport-and-merge Automatically create backport pull requests and merge when ready >bug :Security/Authorization Roles, Privileges, DLS/FLS, RBAC/ABAC Team:Security Meta label for security team test-update-serverless v8.11.0 v8.12.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@danielmitterdorfer @elasticsearchmachine @jakelandis