Add Lock/Unlock for user "modify" actions on applications #3580
Comments
drewboswell
changed the title
|
Hm, this is an interesting proposal and I can see the need for it - users tend to click quickly, hitting the wrong buttons, mayhem ensues. An additional (optional) safeguard in the UI could be a good thing, I have seen other UIs implementing such things as well. I think this could be handled by an additional session cookie within the UI, and there's no need for additional RBAC roles. This should be only a safeguard against human errors for the UI. When this session cookie (e.g. The final decision whether the query is permitted is still done by the API, evaluating the RBAC permissions using the user's JWT token. What do you think about this? |
jannfis
added
component:ui
|
That's an interesting take to do it via session cookie, this would resemble other platforms' superuser mode in essence. (And way easier to implement and maintain) I do think that there should be a flag available, so you are able to mark some applications as needing an unlock. Otherwise you may edit as usual. There is the select multiple apps and synchronize to consider, one could then see a lock next to the flagged ones, and receive a warning for unlocking on mass action. |
|
We have the same use case for two main operations:
|
Summary
Add operational lock/unlock functionality/button. (lock on sync, modify, edit, delete etc.)
Motivation
This is principally to protect admins from accidental or erroneous action on critical infrastructure., and introduces an extra layer of accountability. I would also add some peace of mind when operating applications individually or as a group for critical apps like ingress-controllers, sealed-secrets, rbac-manager etc.
Proposal
To not break a gitops workflow, this can take the form of an RBAC permission toggle.
There are a few options to consider:
The text was updated successfully, but these errors were encountered: