Open selvamt94 opened 2 months ago
This repository uses an automated workflow to automatically label issues which have not had any activity (commit/comment/label) for 60 days. This helps us manage the community issues better. If the issue is still relevant, please add a comment to the issue so the workflow can remove the label and we know it is still valid. If it is no longer relevant (or possibly fixed in the latest release), the workflow will automatically close the issue in 14 days. Thank you for your contributions.
Is your feature request related to a problem? Please describe. NeuVector release 5.4 will be supporting allowing Rancher Manager user with NeuVector granular permission such as user can only do realtime scan function. NeuVector launch icon is not known for those users to start SSO to NeuVector UI. User either need to add additional permission on the cattle-neuvector-system namespace to get the launch icon shown or need to construct below URL to launch NeuVector UI from browser new tab.
https://rancher-dev.nvqa.com/api/v1/namespaces/cattle-neuvector-system/services/https:neuvector-service-webui:8443/proxy/#/dashboard
Describe the solution you'd like Add cattle-neuvector-system namespace permission to users with one of the read or write permission from the below list
Describe alternatives you've considered A clear and concise description of any alternative solutions or features you've considered.
Additional context Standard user with below custom global regscan-write permission can not launch NeuVector UI because launch icon will not be available for this user.
The user need to have below permission on the project that include cattle-neuvector-system namespace to display NeuVector launch icon