Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

E2E: tighten anonymous ACL policy #16483

Closed
tgross opened this issue Mar 14, 2023 · 0 comments · Fixed by #16796
Closed

E2E: tighten anonymous ACL policy #16483

tgross opened this issue Mar 14, 2023 · 0 comments · Fixed by #16796
Assignees
@tgross
Labels
theme/e2e theme/testing Test related issues type/enhancement

Comments

@tgross
Copy link
Member

tgross commented Mar 14, 2023

Our E2E environment uses a broad anonymous ACL policy, with the expectation that tests that need tighter restrictions will opt-in to more restrictive policies. Unfortunately this makes bugs like #16470 easier to miss. We should probably remove the anonymous policy (or make it extremely restrictive) and then require that tests set up any policies they need. The root test runner is using a management token anyways.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tgross tgross

Labels
theme/e2e theme/testing Test related issues type/enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

E2E: test enforcement of ACL system hashicorp/nomad
1 participant
@tgross