Uploaded image for project: 'Red Hat Internal Developer Platform'
  1. Red Hat Internal Developer Platform
  2. RHIDP-3492

Cannot edit or create permission policies or roles with RBAC UI when user has not been ingested into the catalog

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Normal Normal
    • None
    • 1.2.1, 1.2.2, 1.3
    • RBAC Plugin, UI
    • None
    • 1
    • False
    • Hide

      None

      Show
      None
    • False
    • RHDH F&UI plugins 3261

      Description of problem:

      When logged in as a user in the `permission.
      rbac.admin.users` or `permission.rbac.admin.superUsers` configs, the RBAC UI says I do not have permission to create or edit permissions/roles. However, I still have permission to delete roles, but not permission policies. Doing it directly with the backend API works though. Screenshots below are taken when signed in as an admin super user (behavior is the same with an admin user)

      Roles/Permissions created via the backend API appear in the frontend (using the backstage token of the same user viewing the UI), and they appear in the frontend UI (but are not editable in the UI):

      curl -ks -X POST -H "$AUTH" -H "Content-Type: application/json" https://backstage-rhdh.apps-crc.testing/api/permission/role \
--data '{
  "memberReferences": ["user:default/test"],
  "name": "role:default/testers",
  "metadata": {
    "description": "This is a test role"
  }
}'

      Prerequisites (if any, like setup, operators/versions):

      Steps to Reproduce

      1. Add user to admin user or admin super user configurations
      2. Install the RBAC frontend plugin
      3. Navigate to RBAC page
      4. Attempt to edit role or edit permission policies in role

      Actual results:

      Not allowed to create or edit role or permission policies.

      Expected results:

      Be allowed to create/edit/delete roles or permission policies

      Reproducibility (Always/Intermittent/Only Once):

      Always

      Build Details:

      1.3-50 build: https://quay.io/repository/rhdh/rhdh-hub-rhel9/manifest/sha256:59269c27c8f14918e267ef91f59091bf1375432c3c85ea0a18d216ca561717d9 

      RHDH Version: 1.3.0
      Backstage Version: 1.27.7
      Upstream: https://github.com/janus-idp/backstage-showcase/tree/main @ 1e002edd
      Midstream: https://gitlab.cee.redhat.com/rhidp/rhdh/-/commits/rhdh-1-rhel-9 @ c139fd50
      Build Time: 2024-08-01T02:36:08Z

      1.23.2 of the RBAC frontend plugin

       

      RHDH 1.2.2 Build: registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:9709e056f194a24c809dd82b4ab10aa05a9c31574e68ae8d1a5e91de19237045 

      RHDH Version: 1.2.2
      Backstage Version: 1.26.5
      Upstream: janus-idp/backstage-showcase 1.2.x @ c14d6dac
      Midstream: gitlab.cee.redhat.com/rhidp/rhdh rhdh-1.2-rhel-9 @ 01df3afc
      Build Time: 2024-07-26T10:06:37Z

      1.24.1 of the RBAC frontend plugin

      Additional info (Such as Logs, Screenshots, etc):

        1. image-2024-08-02-11-24-24-347.png
          image-2024-08-02-11-24-24-347.png
          98 kB
        2. image-2024-08-02-11-25-44-798.png
          image-2024-08-02-11-25-44-798.png
          134 kB
        3. image-2024-08-02-11-25-54-013.png
          image-2024-08-02-11-25-54-013.png
          134 kB
        4. image-2024-08-02-11-28-54-688.png
          image-2024-08-02-11-28-54-688.png
          134 kB
        5. image-2024-08-02-12-41-06-162.png
          image-2024-08-02-12-41-06-162.png
          103 kB

            divgupta Divyanshi Gupta
            rh-ee-frkong Frank Kong
            RHIDP - Frontend Plugins & UI
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: