Project

General

Profile

Actions
Copy link

Bug #37293

closed

mgr/dashboard: 403 Forbidden error with Users with roles cephfs-manager, block-manager or pool-manager

Added by Ernesto Puerta over 5 years ago. Updated about 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Ernesto Puerta
Category:
Component - Users & Roles
Target version:
Ceph - v14.0.0
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
25141
Crash signature (v1):
Crash signature (v2):

Description

When a user with any mix of the above roles only, tries to access CephFS/Block/Pool pages, he/she receives a 403 Forbidden error ("Sorry, you are not allowed to see what you were looking for").

Cause:
- Even with Grafana not enabled, all the above roles still try to access /settings/GRAFANA_API_URL, which in turn requires CONFIG_OPT Read permission. When the front-end app tries to reach that endpoint it triggers a 503 in the whole page, blocking the user from any other actions.

Reference BZ: https://bugzilla.redhat.com/show_bug.cgi?id=1649711

Actions
Copy link
 #1

Updated by Ernesto Puerta over 5 years ago

  • Pull request ID set to 25141
Actions
Copy link
 #2

Updated by Ernesto Puerta over 5 years ago

  • Status changed from New to Fix Under Review
Actions
Copy link
 #3

Updated by Lenz Grimmer over 5 years ago

  • Status changed from Fix Under Review to Resolved
Actions
Copy link
 #4

Updated by Ernesto Puerta about 3 years ago

  • Project changed from mgr to Dashboard
  • Category changed from 150 to Component - Users & Roles
Actions
Copy link

Also available in: Atom PDF