[Feature] Requesting a new permission for 'status'
Bug #1895326 reported by
Adam Dyess
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Canonical Juju |
Triaged
|
Low
|
Unassigned | ||
Bug Description
Currently juju provides three user roles 'read','write', and 'admin' for a model. All of these have ability to READ 'juju status' and 'juju config <application>'
I'd like to advocate for a use case where there is a user who is granted permission to READ juju status but not juju config.
There are many cases where the config of a charm is 'private' data such as passwords for services or private keys for services hosted within them. I would like to allow a user the ability to see the health of a model, (juju status) without seeing the configuration of the model (juju config <application>)
Please consider this for a next release of juju
Revision history for this message
| John A Meinel (jameinel) wrote | #1 |
| Changed in juju: | |
| importance: | Undecided → Wishlist |
| status: | New → In Progress |
Revision history for this message
| Pen Gale (pengale) wrote | #2 |
| Changed in juju: | |
| status: | In Progress → Triaged |
Revision history for this message
| Canonical Juju QA Bot (juju-qa-bot) wrote | #3 |
| Changed in juju: | |
| importance: | Wishlist → Low |
| tags: | added: expirebugs-bot |
To post a comment you must log in.
This is something that we can consider. However, the intent for things like "config" were always to have a schema that would declare particular fields are sensitive, and then hide them from read only users. Having a permission level feels like a very big hammer, and would require a lot more explanation/fine grained control to figure out what it actually means. (You can run status, what about show-application, show-unit, show-machine, etc.)