Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: None
Affects Version/s: quay-v3.16.0
Component/s: quay
Labels:
- triaged

Activity Type:
Quality / Stability / Reliability
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

PX Impact Score:

Description:

This is an issue found in Quay 3.16.0, when enabled super user and disable super user full access, found Quay Super user can't access API "/api/v1/superuser" with 403 error code, pls review this issue.

Quay Config.yaml:

FEATURE_SUPER_USERS: true
FEATURE_SUPERUSERS_FULL_ACCESS: false

Quay: 3.16.0

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

image-2025-11-05-13-01-46-228.png
2025/11/05 5:01 AM
271 kB
luffy zhang
image-2025-11-06-14-52-19-516.png
2025/11/06 6:52 AM
231 kB
luffy zhang
image-2025-11-06-14-57-39-943.png
2025/11/06 6:57 AM
261 kB
luffy zhang

is related to

PROJQUAY-9712 [Pre-merge]:Quay "global readonly super user" and "super user" should not have access to normal user's organizations and image repos when FEATURE_SUPERUSERS_FULL_ACCESS is set to false

Closed

links to

quay/quay#4455: fix(api): superuser panel access without SUPERUSERS_FULL_ACCESS (PROJQUAY-9693)

quay/quay#4512: [redhat-3.16] fix(api): superuser panel access without SUPERUSERS_FULL_ACCESS (PROJQUAY-9693)

Assignee:: Dave O'Connor

Reporter:: luffy zhang

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/11/05 5:04 AM

Updated:: 2025/12/09 3:34 PM

Resolved:: 2025/11/14 2:15 PM

Details

Description

Attachments

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates