GitOps RBAC logs
pending feedback
E
Educational Cod
Harness RBAC should allow restricting access to the Events and Logs within the Resource View. The underlying ArgoCD allows this via their RBAC, but it'd be nice if we could restrict access via Harness roles so we could get finer grained control: Some operators only need access to see the health of a resource, not the logs.
Log In
Rohan Gupta
marked this post as
pending feedback
To clarify what your suggesting is for the gitops operator now have access to seeing certain events and logs from the cluster? Or are you suggesting in the UI the Harness user doesn’t have access to see the logs in the resource view?
E
Educational Cod
Rohan Gupta this was just brought back to my attention.
The latter: Today I can't control who can see events and logs from the resource view. The RBAC model should allow us to grant permissions to see the resource view without requiring us to grant permission to see the events and logs (which should be two different permissions). Logs, in particular, are a different information level than "the reosurce is healthy or not".