Read-only user unable to view logs of an event for which Category was changed

Question

Read-only user unable to view logs of an event for which Category was changed

ketan-bhardwaj opened this issue 6 months ago · 1 comments

ketan-bhardwaj commented 6 months ago

Summary

Read-only user unable to view logs of an event for which Category was changed.

Steps to reproduce the problem

Change category of an existing event from let's say "A" to "B"
Create a read-only user limited to category "B"
Try to view event history logs of the event.

Your Setup

Operating system and version?

Rocky linux 8.7

Node.js version?

v16.19.1

Cronicle software version?

0.9.53

Are you using a multi-server setup, or just a single server?

1 master, 3 workers

Are you using the filesystem as back-end storage, or S3/Couchbase?

filesystem

Can you reproduce the crash consistently?

Yes

Log Excerpts

Error: User 'xxx' does not have the required account privileges to perform this action (cat_clpvmb0mj23).

Answer 1 · 2024-07-15T21:54:47.000Z

I cannot reproduce this issue. I followed the steps exactly. My new underprivileged user which was limited to the new category can view the event history and the job logs in that category no problem.

Try refreshing your browser maybe? Perhaps the category or user data got stuck in the cache?