| Summary: | When assigning role to user which is not allowed view children on network, then user can't see this network. | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Virtualization Manager | Reporter: | Ondra Machacek <omachace> |
| Component: | ovirt-engine | Assignee: | Nobody <nobody> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 3.3.0 | CC: | acathrow, iheim, lpeer, masayag, myakove, Rhev-m-bugs, yeylon |
| Target Milestone: | --- | Keywords: | Triaged |
| Target Release: | 3.3.0 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | network | ||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-09-09 08:10:43 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | Network | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
|
Description
Ondra Machacek
2013-09-04 15:04:40 UTC
This is intentional by the design of the vnic profiles feature as described on [1]:
NOTE: the permissions used below besides the direct one, and the VM/Template one, must allow the user to view the child objects
The user has direct user permissions on the VNIC profile
The user has user permissions on the VNIC profile's network
...
This is due to the fact that the network is and administrative entity and should be viewed from the admin api and will be viewed on the user api if any of the conditions specified on [1] are met.
[1] http://www.ovirt.org/Features/Vnic_Profiles#VNIC_Profiles
|