Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-4687

Quay 3.8.0 can't update the permission of robot account under normal user namespace by superuser when enable superuser full access

XMLWordPrintable

    • False
    • None
    • False

      Description:

      This is an issue of Quay 3.8.0 new feature "superuser full access", now after enable superuser full access with "FEATURE_SUPERUSERS_FULL_ACCESS: true", with the superuser's Oauth Access Token, superuser can access and delete the robot account under normal user namespace, but can't update the permission of the robot account.

      Quay Image: quay-operator-bundle-container-v3.8.0-108

      Quay Robot account under normal user namespace:

      https://quayregistry-quay-quay-enterprise-13324.apps.quaytest-13324.qe.devcluster.openshift.com/api/v1/repository/larryorg1/larryorg1repo1/permissions/user/larryorg1+redhat 

      With Superuser's Oauth Access token can't update the permission of robot account under normal user namespace:

      With normal user's Oauth Access token can update the permission of robot account:

        1. image-2022-11-03-12-19-03-338.png
          image-2022-11-03-12-19-03-338.png
          236 kB
        2. image-2022-11-03-12-20-29-647.png
          image-2022-11-03-12-20-29-647.png
          242 kB
        3. image-2022-11-08-15-27-36-894.png
          image-2022-11-08-15-27-36-894.png
          244 kB
        4. image-2022-11-08-15-28-11-052.png
          image-2022-11-08-15-28-11-052.png
          256 kB
        5. image-2022-11-10-13-41-24-338.png
          image-2022-11-10-13-41-24-338.png
          193 kB
        6. image-2022-11-10-13-41-51-637.png
          image-2022-11-10-13-41-51-637.png
          223 kB

              sleesinc Kenny Lee Sin Cheong
              lzha1981 luffy zhang
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: