[OPT-6733] Add logout button for Optimize in C8SM

Type: Task
Resolution: Fixed
Priority: L3 - Default
Fix Version/s: 3.10.0-alpha5, 3.9.4
Affects Version/s: None
Component/s: backend
Labels:
None

Effort:
Not defined

In Optimize C8SM, we currently advise users to hide the logout button with an env var. However, we should instead display the logout button like in other modes and have it invalidate the session with Identity. Operate already do this, so we should also do it for consistency: https://github.com/camunda/operate/blob/0b580791e29fac1701a678b114e1e3a02f37b257/webapp/src/main/java/io/camunda/operate/webapp/security/identity/IdentityService.java#L47

ATs:

Optimize C8SM displays the logout button, which invalidates the token with identity when used
Our documentation no longer tells users to hide this button
Our helm charts no longer hide the logout button

Testing Notes:

The logout button is visible in the UI
When clicked, the user no longer has access to Optimize
When the next token refresh happens, the user no longer has access to Identity or the other applications

This is the controller panel for Smart Panels app

Joshua Windels created issue - 27/Jan/23 4:13 PM

Joshua Windels made changes - 27/Jan/23 4:15 PM

Link

New: This issue is related to ~~OPT-6070~~ [ ~~OPT-6070~~ ]

Joshua Windels made changes - 27/Jan/23 4:16 PM

Link

New: This issue is related to INFOSEC-72 [ INFOSEC-72 ]

Garima Yadav made changes - 30/Jan/23 10:38 AM

Link

New: This issue is related to SUPPORT-15652 [ SUPPORT-15652 ]

Joshua Windels made changes - 01/Feb/23 11:31 AM

Status

Original: Triage [ 10612 ]

New: Ready [ 10005 ]

Joshua Windels made changes - 01/Feb/23 11:33 AM

Status

Original: Ready [ 10005 ]

New: In Development [ 10312 ]

Joshua Windels made changes - 01/Feb/23 7:01 PM

Status

Original: In Development [ 10312 ]

New: Ready [ 10005 ]

Joshua Windels made changes - 06/Feb/23 8:30 PM

Status

Original: Ready [ 10005 ]

New: In Development [ 10312 ]

Joshua Windels made changes - 06/Feb/23 8:37 PM

Description

Original: In Optimize C8SM, we currently advise users to hide the logout button with an env var. However, we should instead display the logout button like in other modes and have it invalidate the session with Identity. Operate already do this, so we should also do it for consistency: [https://github.com/camunda/operate/blob/0b580791e29fac1701a678b114e1e3a02f37b257/webapp/src/main/java/io/camunda/operate/webapp/security/identity/IdentityService.java#L47]

*ATs:*
* Optimize C8SM displays the logout button, which invalidates the token with identity when used
* Our documentation no longer tells users to hide this button
* Our helm charts no longer hide the logout button

New: In Optimize C8SM, we currently advise users to hide the logout button with an env var. However, we should instead display the logout button like in other modes and have it invalidate the session with Identity. Operate already do this, so we should also do it for consistency: [https://github.com/camunda/operate/blob/0b580791e29fac1701a678b114e1e3a02f37b257/webapp/src/main/java/io/camunda/operate/webapp/security/identity/IdentityService.java#L47]

*ATs:*
* Optimize C8SM displays the logout button, which invalidates the token with identity when used
* Our documentation no longer tells users to hide this button
* Our helm charts no longer hide the logout button

*Testing Notes:*
* The logout button is visible in the UI
* When clicked, the user no longer has access to Optimize
* When clicked, the user no longer has access to Identity

Joshua Windels made changes - 13/Feb/23 1:58 PM

Fix Version/s		New: 3.10.0-alpha5 [ 17995 ]
Fix Version/s		New: 3.9.4 [ 17996 ]

Assignee:: Unassigned

Reporter:: Joshua Windels

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 27/Jan/23 4:13 PM

Updated:: 10/Oct/23 1:58 PM

Resolved:: 27/Feb/23 10:53 AM

Details

Description

mgm-controller-panel

This is the controller panel for Smart Panels app

Attachments

Activity

People

Dates

Salesforce