Remove the un-used logic of cluster action check

Signed-off-by: Ryan Liang <[email protected]>
opensearch-project · Oct 28, 2023 · 1c8fafe · 1c8fafe
1 parent 1dc296b
commit 1c8fafe
Showing 1 changed file with 0 additions and 8 deletions.
diff --git a/src/main/java/org/opensearch/security/privileges/PrivilegesEvaluator.java b/src/main/java/org/opensearch/security/privileges/PrivilegesEvaluator.java
@@ -353,15 +353,7 @@ public PrivilegesEvaluatorResponse evaluate(
             namedXContentRegistry
         );
 
-        final boolean serviceAccountUser = user.isServiceAccount();
         if (isClusterPerm(action0)) {
-            if (serviceAccountUser) {
-                presponse.missingPrivileges.add(action0);
-                presponse.allowed = false;
-                log.info("{} is a service account which has no access to cluster level permission of {}.", user, action0);
-                return presponse;
-            }
-
             if (!securityRoles.impliesClusterPermissionPermission(action0)) {
                 presponse.missingPrivileges.add(action0);
                 presponse.allowed = false;