graylog2-server icon indicating copy to clipboard operation
graylog2-server copied to clipboard
verified publisher icon Graylog2

Replay search on dashboard widgets yields 403

Open mikkolehtisalo opened this issue 5 years ago • 0 comments

Replay search on dashboard widgets yields 403 when the user does not have admin rights.

Expected Behavior

Users have rights to see only specific streams. User has rights to edit a dashboard. User copies widgets from search from the stream to dashboard. When user clicks "replay search" on dashboard widget the search should open.

Current Behavior

403 happens.

Possible Solution

It seems the search is universal search. I could always build a role for that, for example

curl -v -XPOST -u admin:xxxxx -H 'Content-Type: application/json' -H 'X-Requested-By: cli' 'http://localhost:9000/api/roles' -d '{"read_only": false,"permissions": ["searches:relative", "searches:absolute", "searches:keyword"],"name": "Universal search","description": "Universal search"}'

and add that to the user. However the user would get potentially way too much extra access rights.

Context

It's an annoyance, causing extra work. Sometimes administrator has to assist users.

Your Environment

  • Graylog Version: 3.2.4

mikkolehtisalo avatar Nov 09 '20 07:11 mikkolehtisalo