Loading...

XML

Word

Printable

Type: Spike
Resolution: Done
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: Log Storage
Labels:
None

Story Points:
2
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
Loki - Fine grained Logs Access
Docs QE Status:
NEW
Feature Link:
OBSDA-296 - Better control over access to logs in LokiStack for enterprise environments
QE Status:
NEW
Intelligence Requested:
Market:

Sprint:
Log Storage - Sprint 234, Log Storage - Sprint 235

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Problem Statement

To properly support enterprise environments (See ~~OBSDA-296~~) the cluster administrators in such clusters require to apply RBAC control over LokiStack to support the following three use cases

Support denying users to access the workload logs of an entire namespace.
Support denying users with elevated rights similar to cluster-admins to access the workload logs.
Support limiting users with elevated across many namespaces to access only logs where they are namespace admins.

Developer Notes

Provide an enhancement proposal if needed to support the above via RBAC only.

relates to

OBSDA-296 Better control over access to logs in LokiStack for enterprise environments

Closed

Assignee:: Shweta Padubidri

Reporter:: Periklis Tsirakidis

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2023/03/22 7:33 PM

Updated:: 2023/09/13 8:15 AM

Resolved:: 2023/04/28 10:44 AM

Details

Description

Problem Statement

Developer Notes

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates