Details
-
Bug
-
Resolution: Fixed
-
Critical
-
6.5.1
-
Security Level: Public
-
Untriaged
-
1
-
Unknown
-
CX Sprint 214
Description
According to the description of the roles (cluster_admin and bucket_admin), they shouldn't be able to read any data. However, they currently can read analytics data as the analytics permissions aren't explicitly excluded from the roles. The current Analytics documentation (https://docs.couchbase.com/server/6.5/analytics/rest-analytics.html) mentions that cluster_admin can access several APIs and perform Analytics operation. However, when this fix is implemented, cluster_admin won't be able to perform any analytics operation which might cause a backward compatibility issue.
Attachments
Issue Links
For Gerrit Dashboard: MB-39883 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
130318,1 | MB-39883: Exclude Analytics Permissions From cluster/bucket admins | mad-hatter | ns_server | Status: ABANDONED | 0 | 0 |
130319,4 | MB-39883: Update test to use ADMIN role | master | cbas-core | Status: MERGED | +2 | +1 |
135165,3 | MB-39883: Exclude Analytics permissions from cluster/bucket admins | master | ns_server | Status: MERGED | +2 | +1 |