Dashboard: Remove skip login option

Created on 13 Dec 2017  路  8Comments  路  Source: kubernetes/dashboard

As per request from https://github.com/kubernetes/dashboard/issues/2668#issuecomment-351192466.

good first issue help wanted kinfeature lifecyclfrozen prioritcritical-urgent
Source
picture floreks
👍8

Most helpful comment

Because googling my problem landed in this bug report for the top result:

If you want to keep the skip login button, you need to edit the yaml file to include --enable-skip-login as one of the args of the deployment.

picture ekevoo on 22 Dec 2018
👍6 🎉2

All 8 comments

Our company would like to see this feature implemented since we use several clusters across different teams and we would like to disable even read-only access to some clusters.

dohnto picture dohnto on 21 Dec 2017

Enforcing a read-only mode for unauthenticated users may be useful, but is unnecessary as this can be modelled easily with proper RBAC rules.

However, under very restrictive rules (i.e. no permissions at all), the SKIP button is useless, so an option to disable it would improve the user experience.

onitake picture onitake on 31 May 2018

@jessfraz @liggitt @floreks I would like to restart our discussion here as we still have this issue in our backlog and its priority is critical. What do you think about making a new release as soon as possible to include the current fix in it (#3289) and waiting with completely removing the skip option until the migration finish (#3152)? I would say that it should take around a month to get migration on master and to start work on this issue. Would it be okay for you or you think that the current solution is not enough and we should focus on it right now? What would be your requirements for it then?

maciaszczykm picture maciaszczykm on 5 Dec 2018

and waiting with completely removing the skip option until the migration finish

I think we should not wait and remove the skip option immediately. Making this project secure should always be highest priority.

bryk picture bryk on 7 Dec 2018
👍4

Because googling my problem landed in this bug report for the top result:

If you want to keep the skip login button, you need to edit the yaml file to include --enable-skip-login as one of the args of the deployment.

ekevoo picture ekevoo on 22 Dec 2018
👍6 🎉2

@ekevoo Thanks for this. We've missed that one on the release notes. I have updated changelog and wiki has been also updated to contain new argument.

floreks picture floreks on 27 Dec 2018
👍3

Sad to see that such a breaking change was done in a minor release and that it was originally not even in the changelog.

joekohlsdorf picture joekohlsdorf on 28 Dec 2018

@joekohlsdorf It was in the changelog from the beginning but it was not so prominent and obvious. You would need to check linked issues.

CVE-2018-18264: Fix security issue related to using Dashboard's Service Account (#3400 and #3289)

floreks picture floreks on 28 Dec 2018
Was this page helpful?
0 / 5 - 0 ratings

Related issues

mhobotpplnet picture mhobotpplnet  路  3Comments
billcloud-me picture billcloud-me  路  5Comments
mxey picture mxey  路  3Comments
lukmanulhakimd picture lukmanulhakimd  路  4Comments
dzoeteman picture dzoeteman  路  4Comments