Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Update request for configuration entries should be protected by separate permissions

Description

PUT /audit/config/groups/{groupId}/settings/{settingId} endpoint should protect each specific setting.

Environment

None

Potential Workaround

None

Checklist

hide

Activity

Show:

Valery_Pilko February 19, 2025 at 10:24 AM

Verified on Snapshot environment - works as expected, new set of permissions is following:
|||:Permission name for Okapi env.|:Capabilities/Sets for Eureka env. (type/table - resource - action)
|| audit.config.groups.collection.get | data - Audit Config Groups Collection - view
|| audit.config.groups.settings.collection.get | settings - Audit Config Groups Settings Collection - view
|| audit.config.groups.settings.audit.inventory.collection.get | settings - Audit Config Groups Settings Audit Inventory Collection - view
|| audit.config.groups.settings.audit.authority.collection.get | settings - Audit Config Groups Settings Audit Authority Collection - view
|| audit.config.groups.settings.item.put | settings - Audit Config Groups Settings Item - edit
|| audit.config.groups.settings.audit.inventory.enabled.item.put | settings - Audit Config Groups Settings Audit Inventory Enabled Item - edit
|| audit.config.groups.settings.audit.inventory.records.page.size.item.put | settings - Audit Config Groups Settings Audit Inventory Records Page Size Item - edit
|| audit.config.groups.settings.audit.inventory.records.retention.period.item.put | settings - Audit Config Groups Settings Audit Inventory Records Retention Period Item - edit
|| audit.config.groups.settings.audit.authority.enabled.item.put | settings - Audit Config Groups Settings Audit Authority Enabled Item - edit
|| audit.config.groups.settings.audit.authority.records.page.size.item.put | settings - Audit Config Groups Settings Audit Authority Records Page Size Item - edit
|| audit.config.groups.settings.audit.authority.records.retention.period.item.put | settings - Audit Config Groups Settings Audit Authority Records Retention Period Item - edit

Done

Details

Assignee

Reporter

Labels

Priority

Story Points

Sprint

Development Team

Spitfire

Fix versions

Release

Sunflower (R1 2025)

TestRail: Cases

Open TestRail: Cases

TestRail: Runs

Open TestRail: Runs

Created February 17, 2025 at 3:33 PM
Updated March 14, 2025 at 3:52 AM
Resolved February 24, 2025 at 5:29 PM
TestRail: Cases
TestRail: Runs

Flag notifications