[Security Solution] [Serverless] Open in Lens option from Visualize library is not Opening anything in Lens for users with Tier 1 Analyst role #168245
Comments
vgomez-el
added
bug
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
MadameSheema
added
the
Project:Serverless
|
Hi, I logged in with t1_analyst, and found that visualization lib was not available. Not just 
Screen.Recording.2023-10-24.at.22.02.17.mov |
|
Map was not available when logged in with t1_analyst either: Screen.Recording.2023-10-24.at.22.07.00.mov |
|
From the role definition: https://github.com/elastic/project-controller/blob/09a551b63d5fdc531f97b79c95a966eead8e62b3/internal/project/security/config/roles.yml#L124 |
|
This is pretty serious, even Discovery is not available using those roles. All roles are missing the "analytics" features, we need to add: I see the "roles -> features" spreadsheet defines To in all the roles definition in the yml. I will create a PR ASAP adding them |
crowens
added
blocker
impact:critical
## Summary issue: #168245 Adding missing "Analytics" features to all Security roles: ``` - feature_discover.all - feature_dashboard.all - feature_canvas.all - feature_graph.all - feature_maps.all - feature_visualize.all ``` In order to verify the Discover link is present in the sidenav a new cypress test for serverless has been added to: `x-pack/test/security_solution_cypress/cypress/e2e/navigation/navigation.cy.ts` --------- Co-authored-by: Kibana Machine <[email protected]>
…#169783) ## Summary issue: elastic#168245 Adding missing "Analytics" features to all Security roles: ``` - feature_discover.all - feature_dashboard.all - feature_canvas.all - feature_graph.all - feature_maps.all - feature_visualize.all ``` In order to verify the Discover link is present in the sidenav a new cypress test for serverless has been added to: `x-pack/test/security_solution_cypress/cypress/e2e/navigation/navigation.cy.ts` --------- Co-authored-by: Kibana Machine <[email protected]>
|
@vgomez-el This should be already solved, could you please test again? |
REC-20231108182214.mp4Sure, It works right now! I will mark the bug as validated and close it. Thank you all! |
Describe the bug:
User with Tier 1 Analyst role cannot visualize properly in Lens
Kibana/Elasticsearch Stack version:
Server OS version:
Serverless, production environment
Browser and Browser OS versions:
Elastic Endpoint version:
Original install method (e.g. download page, yum, from source, etc.):
Functional Area (e.g. Endpoint management, timelines, resolver, etc.):
Steps to reproduce:
Current behavior:
User is getting a "You don't have permissions to access the requested page message"
Expected behavior:
According to Serverless Security Roles spreadsheet, Tier 1 Analyst role should have All permissions for Visulize Library (Lens, Maps, Aggregations, Tools)
Screenshots (if relevant):
https://github.com/elastic/kibana/assets/120487607/da877a37-9454-4c2f-b7be-16dbb395cb18
Errors in browser console (if relevant):
Provide logs and/or server output (if relevant):
Any additional context (logs, chat logs, magical formulas, etc.):
The text was updated successfully, but these errors were encountered: