Testcase (not merged yet)
./testrunner -i INI_FILE.ini GROUP=P0,cluster=D+F,skip-cleanup=True -t fts.rbac_fts.RbacFTS.test_fts_admin_permissions,users="""[
Testrunner log- https://gist.github.com/arunapiravi/1741126dd38ba00fa5c6c645d4955330
- Create a Couchbase user with roles FTS admin and Bucket Admin for sasl bucket
- Login as new user
- Create an index on sasl bucket - is successful
- Create an alias on the created sasl index - Fails with error
"Forbidden. User needs one of the following permissions: cluster.bucket.fts!write"
Attached screenshot of UI. Not attaching logs as reproduction is very easy and consistent. Please let me know if you would like to see the logs.
- is duplicated by
MB-18313 [FTS] index aliases RBAC permissions are too high?