Description
A local Ambari user with no cluster roles assigned to it can successfully log into the Logsearch UI.
Logsearch service exercises restriction on who can access its UI using a property "logsearch.roles.allowed". This property is a comma-separated list of roles to be allowed access to Logsearch UI. This defect deals with the following issue:
1. If Logsearch service requires that only certain roles be allowed to access its UI, then a local Ambari user with no roles must not be allowed to access the UI.
DESIRED BEHAVIOR:
=================
1. A local user with no role assigned to it, must not be able to access Logsearch UI.
Note: The description has been updated by removing the aspect of correcting the behavior for Ambari Administrator role for the Logsearch UI.
Attachments
Attachments
Issue Links
- links to