Open harrisonCassar opened 1 year ago
Moved to Low Priority due to other more important work in pipeline (config files + deployment stuff #16). Risk is low, due to low number of users (only truly Software team, and one or two operators per test operation).
~ TRC 1/23/23
In order to support leak checks being performed before the 10/29 Cold Flow, last-minute changes to Grafana's config file located at the path
/etc/grafana/grafana.ini
(refer to https://grafana.com/docs/grafana/latest/setup-grafana/installation/debian/ for more information), before restarting thegrafana-server
service. This fundamentally puts all Dashboards at a risk for accidental modification by unauthenticated users.We should revert this, and do this permissions specification PROPERLY.
More thought to be done on this (perhaps have a separate admin account, and viewer anonymous?).