-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ensure non-admin backups are namespace scoped #49
Comments
This will be part of the backupspec control list: #37 |
Thanks for that. The function to perform other checks is already defined, just need more control of what's permitted: |
@shubham-pampattiwar I think this is not #37 responsibility. There, admin user can, for example, restrict type of backups allowed. But checking if non admin user has permissions over the requested items to be back upped, should be NAC responsibility, not ❓ |
It is controller responsibility so the user should never create VeleroBackup pointing to a namespace different then NonAdminBackup |
@mpryc could non admin user has more than one namespace, and then ask NonAdminBackup to back up all labels, and expect NAC to back up all objects which have that label across all its namespaces ❓ Or this is out of scope ❓ |
Very much out of scope. The user may create automation to gather all the objects with the labels and create NAB per namespace where the objects resides. The objects from outside of the namespace can and will be backed up if velero decides to (e.g. non namespace objects that are required during backup). |
@mpryc is this fixed? |
@mateusoliveira43 yes with the merge of #56 |
With a valid namespace set and credentials a non-admin user is able to take a backup of cr's outside the scope of the user's namespace(s).
results in:
A properly namespaced backup should have only 83 items in this case.
The text was updated successfully, but these errors were encountered: