elastic/kibana

Dashboard and Benchmark Pages Missing Unprivileged Prompt

Open

#184621 opened on Jun 2, 2024

View on GitHub
 (8 comments) (1 reaction) (0 assignees)TypeScript (19,065 stars) (8,021 forks)batch import
Team:Cloud Securitybuggood first issue

Description

Motivation When accessing Cloud Security pages with a role that lacks the required privileges:

  • On the dashboard page, nothing appears until one of the tabs (Cloud / Kubernetes) is clicked.
  • On the benchmark page, there is a delay of approximately 5 seconds before an error message is displayed, stating "We couldn't fetch your cloud security posture benchmark data," instead of presenting the insufficient privileges prompt.

Steps to Reproduce

  1. Create a role that lacks access to cloud security posture indices.
  2. Create a user with the role from the previous step.
  3. Try accessing the dashboard and benchmark pages.

Definition of Done

  • When navigating to the dashboard page, an insufficient privileges prompt should appear without needing to click on any tab.
  • The benchmark page should present a meaningful insufficient privileges prompt.
  • Update the custom roles FTRs to include accessing the benchmark and dashboard pages.

https://github.com/elastic/kibana/assets/90558359/df549baa-c6fa-424a-a56c-58a43e4173da

Related links

Contributor guide

Tech stack
typescriptreact
Domain
frontend
Issue type
bug
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
3
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
half day
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
active
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
clear
Prerequisites
React and TypeScript basicsKibana permission model
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
60
Research direction
Examine the existing insufficient privileges implementation in other Kibana pages (e.g., cloud security) by searching for 'insufficient privileges' or 'hasRequiredPrivileges' in the codebase. Look at the custom roles FTRs referenced in PR #184622 to understand the test patterns. Implement the prompt in the dashboard page before tab rendering and in the benchmark page with immediate feedback without delay.