-
Notifications
You must be signed in to change notification settings - Fork 8.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Management] Stack Management link shows when user has insufficient permissions #163180
Comments
Pinging @elastic/platform-deployment-management (Team:Deployment Management) |
The logic behind allowing the Management item is that it's enabled if at least one of its subitems is enabled. In this case, DevTools is enabled. That's why I couldn't figure out if the problem is the link that doesn't open or if enabling it if at least one item is enabled is the correct logic. |
I think we need to investigate this further. While Dev Tools is under "Management", it isn't under Stack Management, so I wouldn't expect us to render the link. The other behavior I noticed is that the link in itself is wrong - it's |
Please notice that the behavior is the same on the left sidebar: if you have at least one item under Management (like Dev Tools), the Management item itself is clickable and will take you to the Stack Management home page. The Stack Management subitem doesn't have to appear under the Management item either. |
Pinging @elastic/kibana-management (Team:Kibana Management) |
Kibana version:
8.9.0
Describe the bug:
The "Stack Management" link shows on the home page when the user does not have sufficient privileges to view the UIs under Stack Management.
Steps to reproduce:
Expected behavior:
Only the Dev Tools tile/links should show.
Screenshots (if relevant):
URL/error message when clicking from the home page
I would actually expect the link to go here (or not show at all)
Any additional context:
Looks like this logic was originally added via #108580.
After a quick investigation, it looks like
iapplication.capabilities.navLinks.management
returns true, which is unexpected. However, if you logapplication.capabilities.mangement
, all plugins are marked asfalse
(disabled).Another interesting piece, is the actual link is wrong from the home page. If I go to the correct management link, I see the expected error message.
The text was updated successfully, but these errors were encountered: