Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Protect sensitive features and configurations from modifications #8284

Open
Jipegien opened this issue Sep 8, 2024 · 0 comments
Open

Protect sensitive features and configurations from modifications #8284

Jipegien opened this issue Sep 8, 2024 · 0 comments
Assignees
@aHenryJard @marieflorescontact @romain-filigran
Labels
feature use for describing a new feature to develop
Milestone
Release 6.4.0

Comments

@Jipegien
Copy link
Member

Jipegien commented Sep 8, 2024

Use case

Some administrative actions and change of configuration through the UI may cause data loss during ingestion, loss of data visibility for users, breaking predefined automation, etc. without sending proper warning to users taking these administrative actions.

We must implement a way to flag elements of the platform to protect them from unwanted and unpondered modifications.

Elements to protect:

  • Configuration of specific users, groups, roles
  • activation/deactivation of inference rules
  • Main platform Organization setting
  • Default marking definitions
  • Enterprise Edition deactivation
  • File indexing pause/reset

Defining and Using a "Protected" element can only be done with a specific Capability. This capability is not bypassable.

Protected Elements can clearly be identified in the UI.

  • If you don't have the right capability, the Protected Element is visible but is disabled
  • If you have the right capability, the Protected Element is highlighted in strong color, you can use the feature but it needs you to confirm the action (with explicit warning), and you can unprotect the element (explicit warning)
@Jipegien Jipegien added the feature use for describing a new feature to develop label Sep 8, 2024
@Jipegien Jipegien added this to the Release 6.4.0 milestone Sep 8, 2024
@aHenryJard aHenryJard self-assigned this Sep 11, 2024
@SouadHadjiat SouadHadjiat self-assigned this Sep 11, 2024
@SouadHadjiat SouadHadjiat self-assigned this Sep 11, 2024
@SouadHadjiat SouadHadjiat self-assigned this Sep 11, 2024
@marieflorescontact marieflorescontact self-assigned this Sep 12, 2024
@lndrtrbn lndrtrbn self-assigned this Sep 12, 2024
@SouadHadjiat SouadHadjiat removed their assignment Sep 20, 2024
aHenryJard added a commit that referenced this issue Sep 25, 2024
@aHenryJard
First step of implementing chunk1 for sensitive conf protection(#8284)
9248edc
@aHenryJard aHenryJard mentioned this issue Sep 27, 2024
Merged
5 tasks
marieflorescontact pushed a commit that referenced this issue Sep 30, 2024
@aHenryJard @marieflorescontact
First step of implementing chunk1 for sensitive conf protection(#8284)
d973334
@lndrtrbn lndrtrbn removed their assignment Sep 30, 2024
marieflorescontact pushed a commit that referenced this issue Oct 2, 2024
@aHenryJard @marieflorescontact
First step of implementing chunk1 for sensitive conf protection(#8284)
24d99ed
@marieflorescontact marieflorescontact mentioned this issue Oct 3, 2024
Merged
5 tasks
Kedae added a commit that referenced this issue Oct 3, 2024
@marieflorescontact @Kedae
[frontend] Add pop up warning when activate organization segregation (#…
cc18b01 
…8284)

Co-authored-by: Adrien Servel <[email protected]>
Kedae pushed a commit that referenced this issue Oct 4, 2024
@aHenryJard @Kedae
First step of implementing chunk1 for sensitive conf protection(#8284)
e8af456
Kedae pushed a commit that referenced this issue Oct 4, 2024
@aHenryJard @marieflorescontact
[backend/frontend] Implementation of sensitive configuration protecti…
89aea0a 
…on (#8284)

Co-authored-by: marie flores <[email protected]>
Kedae added a commit that referenced this issue Oct 4, 2024
@Kedae
[frontend] Trial for color in DangerZone (#8284)
a277b00
labo-flg added a commit that referenced this issue Oct 4, 2024
@labo-flg
[frontend] fix danger zone display in capabilities (#8284)
a400d51
@labo-flg labo-flg mentioned this issue Oct 4, 2024
Merged
labo-flg added a commit that referenced this issue Oct 4, 2024
@labo-flg
[frontend] fix danger zone display in capabilities (#8284)
b2bd506
Kedae added a commit that referenced this issue Oct 11, 2024
@Kedae
[frontend] Display fixes (#8284)
ab281fb
@marieflorescontact marieflorescontact mentioned this issue Oct 18, 2024
Open
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aHenryJard aHenryJard

@marieflorescontact marieflorescontact

@romain-filigran romain-filigran

Labels
feature use for describing a new feature to develop
Projects
None yet
Milestone
Release 6.4.0
Development

No branches or pull requests
6 participants
@SouadHadjiat @aHenryJard @lndrtrbn @marieflorescontact @Jipegien @romain-filigran