List of existing users is visible by any role #1933

ionutmocanita · 2025-03-28T16:51:41Z

ionutmocanita
Mar 28, 2025

Hello,

Accounts are visible even if the role was restricted just to one Domain.
Is not secure. An Domain Administrator should see only the Assigned Domain user not all users and also analyst should not see all users (admins, other domains, etc).

Answered by ab-smith

Apr 17, 2025

Hello,

I understand your point. As Eric mentioned the user object is at organisation level not at the domain, and both are linked with role assignment that is orthogonal.

My point is that seeing the users of your organisation is an intended feature for assignment management: both for setting the assignee or reading it, and seeing the users of your organisation is accordingly not a violation of any security principle: it's a pointer without any sensitive data leak.

That being said, that's the reason why I explained the relationship with multi tenancy management that we need to rework for pro and could benefit afterwards the CE.

Hope that makes it clearer :)

View full answer

eric-intuitem · 2025-03-29T14:46:44Z

eric-intuitem
Mar 29, 2025
Maintainer

We seek a good solution for this tough problem. The global admin can also be a normal user, and it is cumbersome to have several accounts per user (but possible). And should parent domain users be seen from child domains, and conversely?

We could manage visibility based on role assignments:

Users assigned on a domain are visible only from users from the same domain or a parent domain.
Exception (for advanced use-cases): if a user is assigned to a domain with "published" parameter, this user is visible from users assigned on subdomains.

With this simple logic, we could easily compute the list of visible users for any user and hopefully solve most cases.

0 replies

ab-smith · 2025-03-29T19:18:03Z

ab-smith
Mar 29, 2025
Maintainer

Indeed, and technically this shouldn’t be an issue for the single tenant case of the community edition.
Filtering domains users is already on the Pro plan roadmap, as part of the advanced RBAC and should be available around Q2.

0 replies

ionutmocanita · 2025-04-16T20:05:53Z

ionutmocanita
Apr 16, 2025
Author

Hello the issue is not related to multi tenant.
Also in the single tenant, should not be visible in different domains.
Even if is community or pro.
It is a basic security issue.
I don't want to see people from different domains other ones

0 replies

ab-smith · 2025-04-17T05:03:02Z

ab-smith
Apr 17, 2025
Maintainer

Hello,

I understand your point. As Eric mentioned the user object is at organisation level not at the domain, and both are linked with role assignment that is orthogonal.

My point is that seeing the users of your organisation is an intended feature for assignment management: both for setting the assignee or reading it, and seeing the users of your organisation is accordingly not a violation of any security principle: it's a pointer without any sensitive data leak.

That being said, that's the reason why I explained the relationship with multi tenancy management that we need to rework for pro and could benefit afterwards the CE.

Hope that makes it clearer :)

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

List of existing users is visible by any role #1933

Uh oh!

{{title}}

Uh oh!

Replies: 4 comments

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

List of existing users is visible by any role #1933

Uh oh!

ionutmocanita Mar 28, 2025

Replies: 4 comments

Uh oh!

eric-intuitem Mar 29, 2025 Maintainer

Uh oh!

Uh oh!

ab-smith Mar 29, 2025 Maintainer

Uh oh!

ionutmocanita Apr 16, 2025 Author

Uh oh!

ab-smith Apr 17, 2025 Maintainer

ionutmocanita
Mar 28, 2025

eric-intuitem
Mar 29, 2025
Maintainer

ab-smith
Mar 29, 2025
Maintainer

ionutmocanita
Apr 16, 2025
Author

ab-smith
Apr 17, 2025
Maintainer