Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Fixed
-
2.4.0
-
None
Description
Enforce granular role-based access control for log search functions.
Users must have the SERVICE.VIEW_OPERATIONAL_LOGS authorization in order to perform log search functions.
The following REST API entry points are affected:
GET /api/v1/clusters/:CLUSTER_NAME/host_components
- The LogSearch-related data is to be filtered out if the user does not have authorization to view it
GET /api/v1/clusters/:CLUSTER_NAME/logging/searchEngine
- Access is to be denied if the user does does not have authorization to view LogSearch-related data
Attachments
Attachments
Issue Links
- links to