self-hosted/teleport
self-hosted/teleport
1
0
Fork 0
mirror of https://github.com/gravitational/teleport synced 2024-10-19 16:53:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

allow the default editor role to create nodes (#29763)

Browse source
This commit is contained in:
Andrew LeFevre 2023-08-01 12:32:26 -04:00 committed by GitHub
parent db08adca8e
commit 1ca745ca0e
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
lib/services/presets.go
View file

@ -161,6 +161,7 @@ func NewPresetEditorRole() types.Role {
types.NewRule(types.KindBilling, RW()),
types.NewRule(types.KindClusterAlert, RW()),
types.NewRule(types.KindAccessList, RW()),
types.NewRule(types.KindNode, RW()),
// Please see defaultAllowRules when adding a new rule.
},
},
@ -407,6 +408,7 @@ func defaultAllowRules() map[string][]types.Rule {
types.NewRule(types.KindBilling, RW()),
types.NewRule(types.KindInstance, RO()),
types.NewRule(types.KindAssistant, append(RW(), types.VerbUse)),
types.NewRule(types.KindNode, RW()),
},
teleport.PresetAccessRoleName: {
types.NewRule(types.KindInstance, RO()),