Uploaded image for project: 'Network Observability'
  1. Network Observability
  2. NETOBSERV-1020

Users with no namespace can get non-namespaced flows

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • netobserv-1.3
    • None
    • None
    • None
    • NetObserv - Sprint 235, NetObserv - Sprint 236, NetObserv - Sprint 237

      I was able to see flows that shouldn't be accessible, when creating a user with 0 namespace accessible. Non-namespaced flows (such as flows involving node network, or cluster-external traffic) are visible to these users.

      To reproduce this bug, follow steps described in https://issues.redhat.com/browse/NETOBSERV-901?focusedId=22219753&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-22219753 except you don't create a namespace for the test user.

        1. Screenshot 2023-05-24 at 1.13.52 PM.png
          585 kB
          Amogh Rameshappa Devapura
        2. Screenshot 2023-05-24 at 1.16.51 PM.png
          364 kB
          Amogh Rameshappa Devapura
        3. Screenshot 2023-05-30 at 12.44.48 PM.png
          293 kB
          Amogh Rameshappa Devapura

            jtakvori Joel Takvorian
            jtakvori Joel Takvorian
            Amogh Rameshappa Devapura Amogh Rameshappa Devapura
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: