Bug 1978222: make Users list empty state message more clear #9437
Conversation
openshift-ci
bot
added
the
bugzilla/severity-unspecified
|
@rhamilto: This pull request references Bugzilla bug 1978222, which is invalid:
Comment In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
openshift-ci
bot
added
the
bugzilla/invalid-bug
openshift-ci
bot
added
kind/i18n
|
/bugzilla refresh |
openshift-ci
bot
added
bugzilla/severity-low
|
@rhamilto: This pull request references Bugzilla bug 1978222, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker. 3 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
openshift-ci
bot
added
bugzilla/valid-bug
|
I personally would lean to leave the empty state as-is for the 'no idp configured' case, and add a new "No Users found" empty state when an idp is added that doesn't include the "Add IDP" button and mentions in the sub-text again that "Users are automatically added the first time they log in" or similar. |
|
I'd get the OAuth resource to check if an IDP exists and use that to decide whether to show the button. We do this for the "Getting started" box at the top of the Home -> Overview page IIRC. If the user can't get the OAuth resource, they wouldn't be able to add an IDP anyway, so we can hide the button. Ideally we'd also perform an access review to see if the user can patch the OAuth resource. |
There was a problem hiding this comment.
Should we just say "No users have logged in." for the title, then in the detailed message we can clarify that the list will be empty until at least one user has logged in for the first time. Also, we might consider excluding the IDP link if at least one IDP is already configured.
|
@spadgett @rhamilto @itsptk Does this cover all cases?
|
openshift-ci
bot
added
component/dashboard
|
@rhamilto: This pull request references Bugzilla bug 1978222, which is valid. 3 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Thanks for the input! Take 2. Note this does not cover all the cases @TheRealJon outlined in #9437 (comment), but gets us most of the way there. |
|
@rhamilto: This pull request references Bugzilla bug 1978222, which is valid. 3 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
@rhamilto: This pull request references Bugzilla bug 1978222, which is valid. 3 validation(s) were run on this bug
Requesting review from QA contact: In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
Thanks, @spadgett. Updated. |
This generally sounds good to me. We discussed this bug some in a UX team meeting this morning and I think our only change would be for 2a to just stick with the "No Users found" main line, since that follows our Empty state convention and avoids any possible confusion whether this is a list of currently logged in users. We think the sub-text of "Users will be added to this list after their first login" would cover conveying that to someone looking at this list. Looks good. 👍 |
|
It does not cover them as @TheRealJon outlined them as we don't cover the case where a user can view oauth but not patch it (case 2). We assume that if you cannot patch, you also cannot view (see the third screenshot above). |
This seems fine because you can't add an IDP through the web console if you can't view, even if you have patch. I'm having trouble thinking of a scenario where it makes sense to give a user patch without view for this resource. |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: itsptk, rhamilto, TheRealJon The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
@rhamilto: The following test failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
|
/retest Please review the full test history for this PR and help us cut down flakes. |
|
@rhamilto: All pull requests linked via external trackers have merged: Bugzilla bug 1978222 has been moved to the MODIFIED state. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Can edit identity providers and none exist:
Can edit identity providers and one or more exist, but no users from the identity provider have logged in:
Cannot edit identity providers:
