Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug: [Prod]Able to trigger jobs with "View only" permission #4846

Closed
2 tasks done
Harpreet-kaur08 opened this issue Mar 28, 2024 · 1 comment · Fixed by #5110
Closed
2 tasks done

Bug: [Prod]Able to trigger jobs with "View only" permission #4846

Harpreet-kaur08 opened this issue Mar 28, 2024 · 1 comment · Fixed by #5110
Assignees
@prakarsh-dt @vikramdevtron
Labels
bug Something isn't working

Comments

@Harpreet-kaur08
Copy link

📜 Description

It is a production bug related to user permission

👟 Reproduction steps

  1. Go to user permission, in devtron apps give manager permission to a particular project.
  2. In jobs , select the same project as devtron apps and select all for other permissions and select view only.
  3. Now login with the user and try to trigger the jobs of that project.

👍 Expected behavior

The jobs should not be triggered with view only permission.

👎 Actual Behavior

The jobs are getting triggered with view only permission.

☸ Kubernetes version

EKS 1.23

Cloud provider

Cloud

🌍 Browser

Chrome

🧱 Your Environment

No response

✅ Proposed Solution

No response

👀 Have you spent some time to check if this issue has been raised before?

  • I checked and didn't find any similar issue

🏢 Have you read the Code of Conduct?
@Harpreet-kaur08 Harpreet-kaur08 added the bug Something isn't working label Mar 28, 2024
@vikramdevtron
Copy link
Contributor

vikramdevtron commented Apr 29, 2024
edited

Similar Issue: [prod]Able to create a job after giving "view" permission.

  1. Go to user permissions under authentication of Global Configuraton
  2. After selecting specific permission for the desired email id, I went to the 'direct permissions' section.
  3. In devtron apps, select any project and all the environments and all the applications and give admin/Manager permission.
  4. In jobs, select all the jobs and environments and give view only / run job.

Expected result:
The user should not be able to create new jobs .

Actual result:
The user is able to create new jobs but not the workflows.

This was referenced May 13, 2024
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@prakarsh-dt prakarsh-dt

@vikramdevtron vikramdevtron

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: apps and jobs permission devtron-labs/devtron
3 participants
@prakarsh-dt @vikramdevtron @Harpreet-kaur08