Project

General

Profile

Bug #37293

mgr/dashboard: 403 Forbidden error with Users with roles cephfs-manager, block-manager or pool-manager

Added by Ernesto Puerta about 1 month ago. Updated 26 days ago.

Status:
Resolved
Priority:
Normal
Category:
dashboard/usermgmt
Target version:
Start date:
11/16/2018
Due date:
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:

Description

When a user with any mix of the above roles only, tries to access CephFS/Block/Pool pages, he/she receives a 403 Forbidden error ("Sorry, you are not allowed to see what you were looking for").

Cause:
- Even with Grafana not enabled, all the above roles still try to access /settings/GRAFANA_API_URL, which in turn requires CONFIG_OPT Read permission. When the front-end app tries to reach that endpoint it triggers a 503 in the whole page, blocking the user from any other actions.

Reference BZ: https://bugzilla.redhat.com/show_bug.cgi?id=1649711

History

#1 Updated by Ernesto Puerta about 1 month ago

  • Pull request ID set to 25141

#2 Updated by Ernesto Puerta about 1 month ago

  • Status changed from New to Need Review

#3 Updated by Lenz Grimmer 26 days ago

  • Status changed from Need Review to Resolved

Also available in: Atom PDF