Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Fleet]: "Add Fleet Server" link is enabled on "Agent Policy" page for user role "Setting" set as "Read" only #180661

Closed
amolnater-qasource opened this issue Apr 12, 2024 · 4 comments · Fixed by #180753 or #182015
Closed

[Fleet]: "Add Fleet Server" link is enabled on "Agent Policy" page for user role "Setting" set as "Read" only #180661

amolnater-qasource opened this issue Apr 12, 2024 · 4 comments · Fixed by #180753 or #182015
Assignees
@nchaulet
Labels
bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team:Fleet Team label for Observability Data Collection Fleet team

Comments

@amolnater-qasource
Copy link

amolnater-qasource commented Apr 12, 2024
edited by manishgupta-qasource

Kibana Build details:

VERSION: 8.14.0 SNAPSHOT
BUILD: 73095
COMMIT: 4047cc862b9f2a7c4a799805871eb001922e317b

Host OS: All

Role:

Integrations: All
Fleet: All
Agents: All
Agent policies: All
Settings: Read

image

Preconditions:

  1. 8.14.0-SNAPSHOT Kibana cloud environment should be available.
  2. New User should be created with above defined role.

Steps to reproduce:

  1. From Super user create a Fleet Server agent policy.
  2. Login with New User and navigate to Fleet>Agent policies tab.
  3. Click Fleet Server Agent policy> click Add Fleet Server button
  4. Add Fleet Server host and observe forbidden error is displayed.

Expected Result:
"Add Fleet Server" link should not be displayed on "Agent Policy" page for user role "Setting" set as "Read" only.

Screen Recording:

Agent.policies.-.Fleet.-.Elastic.-.Google.Chrome.2024-04-12.12-01-02.mp4

Feature:
https://github.com/elastic/ingest-dev/issues/2903
@amolnater-qasource amolnater-qasource added bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team:Fleet Team label for Observability Data Collection Fleet team labels Apr 12, 2024
@elasticmachine
Copy link
Contributor

Pinging @elastic/fleet (Team:Fleet)

@amolnater-qasource
Copy link
Author

@manishgupta-qasource Please review.

@manishgupta-qasource manishgupta-qasource changed the title [Fleet]: Add Fleet Server button is enabled under agent policy with Role: Integrations- All and Fleet- All and sub module Settings- Read and others- All. [Fleet]: "Add Fleet Server" link is enabled on "Agent Policy" page for user role "Setting" set as "Read" only Apr 12, 2024
@manishgupta-qasource
Copy link

Secondary review for this ticket is Done

@jen-huang jen-huang mentioned this issue Apr 13, 2024
Merged
@jen-huang jen-huang self-assigned this Apr 13, 2024
@amolnater-qasource amolnater-qasource added the QA:Ready for Testing Code is merged and ready for QA to validate label Apr 16, 2024
@amolnater-qasource
Copy link
Author

Hi @jen-huang

We have revalidated this issue on latest 8.14.0 SNAPSHOT and found this issue as partially fixed.

Observations:

  • "Add Fleet Server" link is enabled on "Agent Policy" page for user role "Setting" set as "Read" only
  • We are able to open "Add Fleet Server" flyout from the integrations tab.

Please let us know if this will be fixed too.

Screen Recording:

Agent.policies.-.Fleet.-.Elastic.-.Google.Chrome.2024-04-18.12-19-04.mp4

Build details:
VERSION: 8.14.0 SNAPSHOT
BUILD: 73512
COMMIT: 9369f3a

Hence, we are reopening this issue for further confirmation.

cc: @kpollich
Thanks!

@jen-huang jen-huang removed the QA:Ready for Testing Code is merged and ready for QA to validate label Apr 18, 2024
@nchaulet nchaulet assigned nchaulet and unassigned jen-huang Apr 29, 2024
@nchaulet nchaulet mentioned this issue Apr 29, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nchaulet nchaulet

Labels
bug Fixes for quality problems that affect the customer experience impact:medium Addressing this issue will have a medium level of impact on the quality/strength of our product. Team:Fleet Team label for Observability Data Collection Fleet team
Projects
None yet
Milestone
No milestone
5 participants
@nchaulet @jen-huang @elasticmachine @manishgupta-qasource @amolnater-qasource