pelican-dev
Noderestrictions apply not everywhere
Current Behavior
If I create a Role with noderestrictions, the user with the role can still access all servers, even those that are not on this node.
Expected Behavior
The User can only see the servers thats on the node. And i guess its better to see only node specific resources On resources that not related to nodes they can see every setting if they have the right permissions
Steps to Reproduce
- Create a Role with Noderestrictions
- Apply this role to one User
- login with this user and control every server on all nodes
Panel Version
1.0.0-beta21
Wings Version
1.0.0-beta13
Games and/or Eggs Affected
No response
Docker Image
No response
Error Logs
Is there an existing issue for this?
- [x] I have searched the existing issues before opening this issue.
- [x] I have provided all relevant details, including the specific game and Docker images I am using if this issue is related to running a server.
- [x] I have checked in the Discord server and believe this is a bug with the software, and not a configuration issue with my specific system.
Can't reproduce that. (created a second node, created a role that only has access to this node, assigned that role to a new user, checked servers and the servers from the first node are not visible)
So, is that only on the client side? Do all the servers also show in the admin area?
Just wanted to open an issue for exactly the same thing...
I can reproduce this, and from what i can see this is limited to the client side only. The backend/admin behaves as expected. And its not just the server showing up, its also that the user can then do pretty much all client side operations against said server.
