"Stack Management" menu + settings page visible for custom role that only has Dashboard read access #78229
Labels
Feature:Security/Spaces
Platform Security - Spaces feature
Team:Security
Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
triage_needed
Comments
kertal
added
Feature:Security/Spaces
|
Pinging @elastic/kibana-security (Team:Security) |
|
Thanks for filing this issue @boutcher ! I'm pretty sure it works as "intended" (in a sense that's old known thing and that it doesn't really give any additional access to the user with such role) and we finally fixed this in 7.10 with #67791 (see this issue for the details of behavior you're observing). But I'll let @legrego to confirm and close this issue if so. |
|
Yeah, this was a long-standing limitation of the existing privilege system. #67791 will automatically hide management sections based on your cluster and index privileges. If you don't have access to any management sections, then the management app will be hidden altogether. Hope this helps! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Kibana version: 7.9.1
Describe the bug: I've defined a role with custom space privileges, where the role only has read access to dashboards and visualizations. When looking at the menu for a user assigned to that role, you see dashboards, visualizations, and ALSO "Stack Management", which is the furthest thing from their permissions you'd expect them to see. Why is this? I've got two screenshots that show the issue below.
The text was updated successfully, but these errors were encountered: