Hide Change password link for SAML users
#18118
Assignees
Labels
cosmetic
release_note:enhancement
Team:Security
Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more!
Comments
elasticmachine
added
Team:Security
|
More generally, we should only show the link if we know the password can be changed. Now that Elasticsearch returns realm information on authentication, we can use this information to better inform the UI. |
|
@jkakavas would it be correct to say that password changes via the ES API can only be done when the user's |
|
@legrego correct! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Original comment by @azasypkin:
Since identity of the users that logged in with 3rd-party Identity Provider is managed by this Identity Provider (outside of Kibana and Elasticsearch) we should hide
Change Passwordlink (and any other similar links and views if needed).Having this link is UI only issue, since user won't be allowed to change password anyway.
The text was updated successfully, but these errors were encountered: