-
Task
-
Resolution: Unresolved
-
Normal
-
None
-
3
-
False
-
-
False
-
-
-
RHDH Documentation 3276, RHDH Documentation 3277, RHDH Documentation 3278, RHDH Documentation 3279, RHDH Documentation 3284
Workspace
rbac
📜 Description
I am trying to manage permissions to create new RBAC policies.
To do this I gave catalog permissions to all employees - but 'denied' all other permissions
In a seperate group ('admins') I gave ALL permissions.
However I am in both the 'admins' group and 'all-employees' group - but I only seem to get the permissions of the 'all-employees' group.
Its not clear if / how I can assign permissions based on the role - where some users roles provide elevated permissions over the base 'all-employees' group.
Or have I missed a step
👍 Expected behavior
I think members of the 'admins' group should have elevated permissions over the 'all-employees' group. Based on the heirarchy of groups (i.e admins is loaded after all-employees)
👎 Actual Behavior with Screenshots
Members of the admins group are given the roles assigned the all-employees (as they are also a member of that group).
👟 Reproduction steps
I created a group in an `RBAC CSV file' and gave permissions, and then in the same CSV file specified the admins group roles.
📃 Provide the context for the Bug.
No response
👀 Have you spent some time to check if this bug has been raised before?
I checked and didn't find similar issue
🏢 Have you read the Code of Conduct?
I have read the Code of Conduct
Upstream link: https://github.com/backstage/community-plugins/issues/3206
