Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Critical
Fix Version/s: RHODS_1.11.0_GA
Affects Version/s: None
Component/s: Install Upgrade Uninstall, Security
Labels:

Story Points:
3
Blocked:
False
Ready:
False
Automated:
No
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Fixed in Build:
1.11.0-3
Regression:
No
Target Release:

RHODS_1.11.0_GA
Test Blocker:
No
Test Coverage:

Yes
Watchlist Impact:
None
Git Pull Request:
https://gitlab.cee.redhat.com/service/managed-tenants-bundles/-/merge_requests/409
Market:

Sprint:
MODH Sprint 33, MODH Sprint 36, IDH Sprint 1.9, IDH Sprint 1.10, IDH Sprint 1.11

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

colored textThe addon's CSV in managed-tenants currently grants cluster-wide admin permissions to the rhods-operator: https://gitlab.cee.redhat.com/service/managed-tenants/-/blob/main/addons/rhods/bundles/1.1.1-41/rhods-operator.1.1.1-41.clusterserviceversion.yaml#L40

The rhods-operator should only have the permissions that it (+ its subcomponents) need to avoid stuff like "layered security breaches" or an error in the operator code wreaking havoc in the customer's workloads.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

screenshot-1.png
29 kB
2022/05/10 12:30 PM

Assignee:: Giulio Frasca

Reporter:: Josh Gwosdz

QA Contact:: Tarun Kumar

Votes:: 0 Vote for this issue

Watchers:: 12 Start watching this issue

Created:: 2021/10/05 4:38 PM

Updated:: 2023/02/17 9:19 PM

Resolved:: 2022/05/16 2:38 PM

Details

Description

Attachments

Attachments

Easy Agile Planning Poker

Activity

People

Dates