Bug 1012600

Summary: RBAC: [Usability] Remove your own role mapping leads to error
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Jakub Cechacek <jcechace>
Component: Web ConsoleAssignee: Harald Pehl <hpehl>
Status: CLOSED CURRENTRELEASE QA Contact: Pavel Jelinek <pjelinek>
Severity: low Docs Contact:
Priority: unspecified    
Version: 6.2.0CC: brian.stansberry, crobson, hbraun, hpehl, jdoyle, jkudrnac, kkhan, lthon, pjelinek
Target Milestone: DR3Keywords: Reopened
Target Release: EAP 6.4.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: Usability
Fixed In Version: Doc Type: Known Issue
Doc Text:
Cause: Consequence: Workaround (if any): Results:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-07-09 11:38:13 UTC Type: Task
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1021418, 1146502    

Description Jakub Cechacek 2013-09-26 17:33:06 UTC
An attempt to remove role mapping of currently authenticated user leads to an error. Even though this might be in fact a feature, but in such case user should be informed about this fact in other way than standard error. At least the error message should contain the explanation why the removal failed.

Comment 1 JBoss JIRA Server 2013-10-15 20:28:01 UTC
Harald Pehl <hpehl> updated the status of jira HAL-282 to Resolved

Comment 2 JBoss JIRA Server 2013-10-15 20:28:01 UTC
Harald Pehl <hpehl> made a comment on jira HAL-282

Fixed by HAL-281. The error message reads now "You don't have the permissions to access this resource!"

Comment 3 Jakub Cechacek 2013-10-31 14:01:06 UTC
This is the very same case as BZ1016546. The problem here might be the fact that this error message is shared among all unauthorized operations, thus it might be a bit confusing in some cases. 

Returning back to assigned, however I've changed the severity to low.

Comment 4 Heiko Braun 2014-07-09 11:38:13 UTC
In agreement with Catherine we've decided that UX issues will be tracked separately.

Comment 5 Jakub Cechacek 2014-07-21 06:45:05 UTC
Issue moved under the UX component. 

Also moved to 6.4 as this issue is still valid for 6.3. Use ack flags to decide whether we want to go through with it or not.

Comment 6 John Doyle 2014-08-21 13:24:58 UTC
Can we update the description of the BZ.  Does current user mean any user that's logged into the console currently, or does it refer to a user that's trying to modify his own role assignments?

Ideally, we would present an error message that is specific to the task that a user is trying to perform.  So in this case we would mention that a 'role assignments could not be changed be because you don't have access to resource X'.

Comment 7 Jakub Cechacek 2014-08-21 14:33:25 UTC
User that's trying to modify his own role assignments.

Comment 8 JBoss JIRA Server 2014-09-23 09:27:14 UTC
Harald Pehl <hpehl> updated the status of jira HAL-292 to Resolved

Comment 9 Pavel Jelinek 2014-10-02 13:46:19 UTC
This particular issue is fixed for EAP 6.4.0.DR3 but there are other related issues which I will report tomorrow.