Skip to content

Resource required for admin permissions #3228

New issue
New issue
Closed
#3231
Closed
Resource required for admin permissions#3228
#3231
Assignees
jinapurapu
Labels
UIUser Interfacebugthis needs to be fixed
@jinapurapu

Description

@jinapurapu
jinapurapu
opened on Feb 6, 2024

Expected Behavior

Policy with admin:AddUser permission should not require any resource to enable "Create User" button.

Current Behavior

User policy with "admin:AddUser" does not enable Create User button unless a resource is also defined in the policy.

Possible Solution

Fix hasPermission function for admin permissions

Steps to Reproduce (for bugs)

  1. Create the following Policy and apply it to a Console User:
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "admin:AttachUserOrGroupPolicy",
        "admin:CreateUser",
        "admin:ListGroups",
        "admin:ListUserPolicies",
        "admin:ListUsers"
      ]
    }
  ]
}
  1. Log into Console as User with the above policy and go to Users screen, Create User button is disabled

Metadata

Metadata

Assignees

Labels

UIUser Interfacebugthis needs to be fixed

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions