Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Critical
Fix Version/s: Consoledot CY24Q4
Affects Version/s: None
Component/s: None
Labels:

Epic Link:
RHCLOUD-30172
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
BZ requires_doc_text:
Unset
Feature Link:
CRCPLAN-232 - AuthZ | PRBAC v2 Service Provider Migration Initiation (Internal)
Regression:
None
BZ Keywords:
- Unset
Intelligence Requested:
Market:

Original story points:
5
Sprint:
A&M Tech Debt Q10, Access & Management Sprint 95, Access & Management Sprint 95, Access & Management Sprint 96, Access & Management Sprint 97, Access & Management Sprint 98, Access & Management Sprint 99, Access & Management Sprint 100

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Make use of UMB to keep track of new user creation to explicitly create relations for default access.

The import job will uses this same logic in ~~RHCLOUD-35577~~

depends on

RHCLOUD-34770 (User import job) Bootstrap existing Tenants, default group members, and user_id (standard JWT "sub") so access checks work and can use JWTs or identity header without having to use PII or lookup UUID from RBAC

Closed

is related to

RHCLOUD-35577 Migrate existing org ids to "bootstrapped" Tenants (built-in Workspaces, with uuids for default role bindings and default groups)

Closed

RHCLOUD-35302 Create the default/root workspace for tenant

Closed

RHCLOUD-35448 Start using Principal.user_id for group#member@principal tuples

Closed

1.	Update umb handler to keep track of new user creation and user updates (e.g. new admin privileges or disabled, etc)	Closed	Jay Zeng
2.	Update default group relations for new users, and new Tenant built-ins for new Tenants	Closed	Alec Henninger
3.	Handle admin default group relationships	Closed	Alec Henninger
4.	In order import existing data and stay consistent over time, add toggle to UMB listener to stop consumption (and let queue build up)	Closed	Jay Zeng
5.	Update lazy tenant creation in middleware to also include same built-ins as UMB creation	Closed	Alec Henninger
6.	Feature flags for tenant bootstrapping (both UMB and middleware)	Closed	Alec Henninger
7.	Update custom default group logic	Closed	Libor Pichler

Assignee:: Alec Henninger

Reporter:: Jay Zeng

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/08/08 5:35 PM

Updated:: 2024/11/20 3:29 PM

Target start:: 2024/06/30

Target end:: 2024/12/20

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Sub-Tasks

Activity

People

Dates