fix: add session roles to iam owner (#9413)

# Which Problems Are Solved Currently I am not able to run the new login with a service account with an IAM_OWNER role. As the role is missing some permissions which the LOGIN_CLIENT role does have # How the Problems Are Solved Added session permissions to the IAM_OWNER --------- Co-authored-by: Livio Spring <livio.a@gmail.com>
2025-08-11 14:47:33 +00:00 · 2025-03-04 07:41:06 +01:00
parent 25c1d4b55f
commit a5bc68fdad
2 changed files with 4 additions and 0 deletions
--- a/cmd/defaults.yaml
+++ b/cmd/defaults.yaml
@@ -1297,6 +1297,8 @@ InternalAuthZ:
        - "userschema.read"
        - "userschema.write"
        - "userschema.delete"
+        - "session.read"
+        - "session.delete"
    - Role: "IAM_OWNER_VIEWER"
      Permissions:
        - "iam.read"
@@ -1332,6 +1334,7 @@ InternalAuthZ:
        - "action.target.read"
        - "action.execution.read"
        - "userschema.read"
+        - "session.read"
    - Role: "IAM_ORG_MANAGER"
      Permissions:
        - "org.read"