Open support-tt opened 1 year ago
hey @support-tt
Access control is bound to user machines (NetBird agents that run on the machines to be precise). We plan to limit what a user role can see in the /peers tab of the UI dashboard. You described it well - everything that user machines can connect to is visible to a user in the UI.
What we plan is simple - we will only display the machines that the user owns in the /peers tab. Additionally, we will show the names and IPs of those peers that the user's machines can connect to in the detailed view of every user machine machine.
Does this make sense? What is your ideal access control? Let me know
Bets, Misha
hey @braginini
thanks for the fast response. Yes I think I get it now. It would be great if a admin could remove a user from a machine. For example we got some tablets and a user registered them. Now other people want to use them so I need to completely remove them from netbird and reregister so that they are not mapped to that user anymore.
So managing who owns which client in the ui would be great. I know I can change this in the store.json but thats not very comfortable and i already crashed my config twice by doing something wrong. (got a backup so was not a big problem)
@support-tt I will take it to the team and discuss changing ownership of the machine. Thank you!
@braginini yes that would be great. At least that you can see in the UI which peer is owned by which user. In larger enviromennts it will otherwise become confusing in the long run.
thanks you for your input and fast response.
Hello, i tested the netbird management UI with 3 users.
So in my opinion there is no clear access control or did I miss something ?