Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-9875

Global Readonly Super user can't view regular user tag Security report

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Major Major
    • None
    • None
    • quay-ui
    • None
    • False
    • Hide

      None

      Show
      None
    • False

      Description:

      Readonly super user can see regular user's tag Security report/Packages

       

      Quay:
      stable-3-16-v4-19
      quay.io/redhat-user-workloads/quay-eng-tenant/stable-3-16-v4-19@sha256:541c7f45baf8b1de998c7f80c601bbfb528d6c3ffd49dcfa6ca99a369c1682f7
       
      Steps:
      1, Login with regular common user: user1, create user1org/user1repo, push tag ubuntu
      2, Click the tag name -> Security report/Packages, can see tag vuln scan result

      3, Login with Global Readonly Superuser, go to same path user1org/user1repo/tag/ubuntu
      4, Click the tag name -> Security report/Packages

       

      Result:

      Looping, no value returned

       

        1. image-2025-11-28-15-14-22-232.png
          image-2025-11-28-15-14-22-232.png
          244 kB
        2. image-2025-11-28-15-07-34-844.png
          image-2025-11-28-15-07-34-844.png
          184 kB

              szhao@redhat.com Sean Zhao
              szhao@redhat.com Sean Zhao
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: