[BUG] Need for invalid permission clean up? #1483
Labels
bug
Something isn't working
Comments
|
@setiah Could you weigh in if you think this requires are migration to detect these invalid configurations and the appropriate action to take on them (Delete the invalid permission, create the correct permission on the role)? |
3 tasks
|
[Triage] @setiah Would you please add you thoughts here? |
|
[Triage] I don't think its clear that this would be high value for security plugin users - this area will be approached when permissions declarations are revisited |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What is the bug?
Coming from #1481, there is a possiblity that users have used the Dashboards dropdown to create permissions object were a cluster permission was included in the list of index permissions. These permissions might be creating confusion since they are not authorizing actions as expected.
How can one reproduce the bug?
Steps to reproduce the behavior:
indices:data/write/reindexand apply itWhat is the expected behavior?
Reindex should fail because permission really weren't granted, it should be clear how the permissions should be modified to grant that permission
The text was updated successfully, but these errors were encountered: