Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE] Enable display of assigned role collections with group filter #748

Open
lechnerc77 opened this issue Mar 21, 2024 · 4 comments
Open

[FEATURE] Enable display of assigned role collections with group filter #748

lechnerc77 opened this issue Mar 21, 2024 · 4 comments
Labels
enhancement New feature or request

Comments

@lechnerc77
Copy link
Member

What area do you want to see improved?

terraform provider

Is your feature request related to a problem? Please describe.

As of today you can evaluate which role collection are assigned to a user via the data source btp_subaccount_user. This works if the role collections are directly assigned to a user.

Another usual way is to assign role collections via groups which is supported by the corresponding resource https://registry.terraform.io/providers/SAP/btp/latest/docs/resources/subaccount_role_collection_assignment. However in this case there is no way to find out the connection between role collections and groups neither via CLI nor via Terraform.

Describe the solution you would like

The Terraform provider should support the functionality to retrieve the information which role collection is assigned to which group.

Describe alternatives you have considered

One possible way might be accessing the information via APIs, but this jeopardizes a consistent Terraform setup.

Additional context

This is certainly a cross-topic spanning from the security/XSUAA team to the BTP CLI and to the Terraform provider that needs to be aligned
@lechnerc77 lechnerc77 added enhancement New feature or request pending-decision This issue has not been accepted for implementation nor rejected. It's still open to discussion. labels Mar 21, 2024
@github-actions GitHub Actions
Copy link

Thanks for the feature request. We evaluate it and update the issue accordingly.

Community Note

Voting for Prioritization

  • Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

  • If you are interested in working on this issue, please leave a comment.
  • If this would be your first contribution, please review the contribution guide.

@lechnerc77 lechnerc77 mentioned this issue Apr 3, 2024
Closed
@lechnerc77
Copy link
Member Author

This issue must be analyzed also under the aspect of import of role collection assignments which is currently not possible. This is a gap that at least should be also discussed in the context of this request

@lechnerc77
Copy link
Member Author

[SAP Internal Reference] https://jira.tools.sap/browse/XSUAA-3475 - follow-up in Q3/2024

@lechnerc77 lechnerc77 removed the pending-decision This issue has not been accepted for implementation nor rejected. It's still open to discussion. label Apr 4, 2024
@lechnerc77 lechnerc77 mentioned this issue Jul 24, 2024
Closed
@lechnerc77
Copy link
Member Author

Update: NO ETA available until now.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lechnerc77