Bug #40743 Provide more fine grained access control to the merlin web user interface
Submitted: 14 Nov 2008 13:23 Modified: 18 Nov 2008 19:06
Reporter: Simon Mudd (OCA) Email Updates:
Status: Duplicate Impact on me:
Category:MySQL Enterprise Monitor: Web Severity:S3 (Non-critical)
Version: OS:Any
Assigned to: CPU Architecture:Any
Triage: Needs Triage: D5 (Feature request)

[14 Nov 2008 13:23] Simon Mudd
There are many people who may have an interest in accessing merlin. With the 2.0 query analysis pages this includes developers.

However not all users should perhaps have access to all servers so it would be nice if you can limit access (default global) to a specific set of servers or groups of servers.

Developer access for example should be read only but they should be able to see the query analysis pages.

How to repeat:
login to merlin.
Currently there are only manager, dba, and agent type users.

Suggested fix:
Perhaps a "read-only" user should be added.
Associate access rights to all servers, or a list of individual servers, or groups of servers.
Perhaps at a later stage it might make sense to determine which tabs/or subsets of the different menus are accessible.
It might even make sense to provide permissions based on a user's group, but I understand that this would be a major overhaul of the whole permissioning structure.
[14 Nov 2008 15:24] Valeriy Kravchuk
Thank you for a reasonable feature request.
[18 Nov 2008 19:06] Gary Whizin
see #40450