Uploaded image for project: 'Observability and Data Analysis Program'
  1. Observability and Data Analysis Program
  2. OBSDA-239

Restrict access for non-cluster-admin user to view events in kibana only for their respective project

XMLWordPrintable

    • False
    • None
    • False
    • Not Selected

      Proposed title of this feature request

      Restrict access for a non-cluster-admin users to view events in kibana only for their respective project

      What is the nature and description of the request?

      As per the documentation[0], After configuring events user needs to be given cluster-reader access to view the events in kibana but doing this allows the user to view events from other projects too which should not happen

      [0] https://docs.openshift.com/container-platform/4.11/logging/cluster-logging-eventrouter.html

      Why does the customer need this? (List the business requirements)

      Security issue since users have access to logs apart from their own project

      List any affected packages or components.

      Logging
      Kibana

              jamparke@redhat.com Jamie Parker
              rhn-support-ssonigra Sonigra Saurab
              Votes:
              2 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: