Dashboard ACL

[risturiz]

Hi, it´s posible to hide "Hosts" from different networks on dashboard?. I have two (networks/keys/normal users), everyone see only network and key but all "Hosts" from both networks.

UI: v0.20.1 Server: v0.20.1

Thanks!

[Aceix]

Help me understand your situation. Are you asking to restrict the hosts that shows in the hosts page to only those a user has visibility to, due to the user being able to access the network those hosts are in?

Currently, if you click on a network and go to the Hosts tab, you will see only the hosts connected to that network. But you can still see all hosts from the Hosts page.

[Aceix]

Also, is this related to the network ACL tab?

[risturiz]

Help me understand your situation. Are you asking to restrict the hosts that shows in the hosts page to only those a user has visibility to, due to the user being able to access the network those hosts are in?

Yes... My actual "test" config is:

• One Admin
• Two normal users
• Two Networks
• Two Enrollment Keys

Admin can see all and its fine... The two users can see only their network and only their enrollment keys... The problem is why show "All Hosts" for both users?... Maybe more users + more hosts = insane list of hosts for all users... And i don't see the utility to show hosts from another networks, i think is more clean to have only hosts that you add for each user.

Currently, if you click on a network and go to the Hosts tab, you will see only the hosts connected to that network. But you can still see all hosts from the Hosts page.

• If you click "All Networks" you see only your networks
• If you click "Enrollment Keys" you see only your keys
• If you click "All Hosts" you see all hosts even from another user/networks ( this should show only your hosts )

P.D. Maybe another issue or related:

This error appear when you click the name of your network ( normal user / only one network )

I hope is more clear now :-)

Thanks!

[Aceix]

@risturiz thanks it's clear now. will relay to the team.

also, regarding the forbidden messages, relogin and it will work. noted too

[risturiz]

@risturiz thanks it's clear now. will relay to the team.

Hi, i dont know if this make any sense:

SuperAdmin

• Multiples Admin that have control of zones ( US / EU / Asia )
• Multiples wireguard servers every admin can create and administer ( one server for each city office )
• Multiples users that depend of location ( Chicago, New York, Utah )

SuperAdmin access to all... Admins have access to self create servers but can administer another server with some ACL... Users only see hosts attached to same network.

also, regarding the forbidden messages, relogin and it will work. noted too

In my case the error appear every time i click network.

Thanks!

[Aceix]

@risturiz we're reshaping the user management model, and will add some firewall permissioning as well so stay tuned