You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: modules/authorization/proc-enabling-the-rbac-plugin.adoc
+7-7Lines changed: 7 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -12,7 +12,7 @@ The permission policies for users and groups in the {product-short} are managed
12
12
13
13
.Procedure
14
14
. The RBAC plugin is installed but disabled by default.
15
-
To enable the `./dynamic-plugins/dist/janus-idp-backstage-plugin-rbac` plugin, edit your `dynamic-plugins.yaml` with following content.
15
+
To enable the `./dynamic-plugins/dist/janus-idp-backstage-plugin-rbac` plugin, edit your `dynamic-plugins.yaml` with the following content.
16
16
+
17
17
.`dynamic-plugins.yaml` fragment
18
18
[source,yaml]
@@ -24,10 +24,10 @@ plugins:
24
24
+
25
25
See link:{installing-and-viewing-dynamic-plugins-url}[{installing-and-viewing-dynamic-plugins-title}].
26
26
27
-
. Declare policy administrators to allow a certain limited number of authenticated users to configure RBAC policies by using the REST API or the Web UI, rather than editing the CSV file.
28
-
The permissions can be defined in a separate CSV file that is referenced in the app-config-rhdh ConfigMap, or they can be created via REST API or Web UI.
27
+
. Declare policy administrators to enable a select number of authenticated users to configure RBAC policies through the REST API or Web UI, instead of modifying the CSV file directly.
28
+
The permissions can be specified in a separate CSV file referenced in the `app-config-rhdh` ConfigMap, or permissions can be created using the REST API or Web UI.
29
29
+
30
-
To declare users such as _<your_policy_administrator_name>_ as policy administrators, edit your custom {product-short} ConfigMap, such as `app-config-rhdh`, and add following lines to the `app-config-rhdh.yaml` content:
30
+
To declare users such as _<your_policy_administrator_name>_ as policy administrators, edit your custom {product-short} ConfigMap, such as `app-config-rhdh`, and add following code to the `app-config-rhdh.yaml` content:
31
31
+
32
32
.`app-config.yaml` fragment
33
33
[source,yaml,subs=+quotes]
@@ -43,11 +43,11 @@ permission:
43
43
.Verification
44
44
. Sign out from the existing {product} session and log in again using the declared policy administrator account.
45
45
. With RBAC enabled, most features are disabled by default.
46
-
.. Navigate to the Catalog page in {product-very-short}.
47
-
The Create button is not visible.
46
+
.. Navigate to the *Catalog* page in {product-very-short}.
47
+
The *Create* button is not visible.
48
48
You cannot create new components.
49
49
.. Navigate to the API page.
50
-
The Register button is not visible.
50
+
The *Register* button is not visible.
51
51
52
52
.Next steps
53
53
* Explicitly enable permissions to resources in {product-short}.
0 commit comments