Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: lightspeed
Labels:
None

Epic Link:
RBAC support for Lightspeed
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

As an RHDH security/devops engineer, I want to ensure views from the Lightspeed plugin are RBAC'd and free of important/high severity security findings, so I can limit the exposure of information to only those on a need to know basis.

This applies to both front end and backend.

More context: RHIDP-1531

Acceptance criteria:

Should have the permission support UI
External plugin services cannot read each others' PII and/or confidential information
Customer documentation updated with instructions on how to configure RBAC and logging

Additional info:

Fix approach:

Review RHDH SCA and other scanners' findings that affect your plugin
Implement RBAC using these resources:
Update tests to create appropriate RBAC
If applicable, implement audit logging
Update shared procedures with instructions on how to create role/binding and enable logging

links to

Github PR

Assignee:: Karthik Jeeyar

Reporter:: Karthik Jeeyar

Team:: RHIDP - Frontend Plugins & UI

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/10/30 5:40 AM

Updated:: 2025/11/25 9:06 PM

Resolved:: 2024/11/29 12:05 PM

Details

Description

Description of problem:

Acceptance criteria:

Additional info:

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates