Skip to content

Auth: Deny access for a user without any roles #798

New issue
New issue
Open
Open
Auth: Deny access for a user without any roles#798
Labels
area/authApp authentication related issuesarea/rbacRelated to Role Based Access Control featurescope/backendRelated to backend changesstatus/triage/completedAutomatic triage completedtype/enhancementEn enhancement/improvement to an already existing feature
@Haarolean

Description

@Haarolean
Haarolean
opened on Jan 22, 2025

via provectus/kafka-ui#2946

A user without permissions still has access to the UI with no visible clusters.

TODO:

  • If a user gets no roles assigned upon authenticating, deny the login altogether.

Make sure default roles (#344) don't interfere.

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/authApp authentication related issuesarea/rbacRelated to Role Based Access Control featurescope/backendRelated to backend changesstatus/triage/completedAutomatic triage completedtype/enhancementEn enhancement/improvement to an already existing feature

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions