Bug 1012600
Summary: | RBAC: [Usability] Remove your own role mapping leads to error | ||
---|---|---|---|
Product: | [JBoss] JBoss Enterprise Application Platform 6 | Reporter: | Jakub Cechacek <jcechace> |
Component: | Web Console | Assignee: | Harald Pehl <hpehl> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Pavel Jelinek <pjelinek> |
Severity: | low | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.2.0 | CC: | brian.stansberry, crobson, hbraun, hpehl, jdoyle, jkudrnac, kkhan, lthon, pjelinek |
Target Milestone: | DR3 | Keywords: | Reopened |
Target Release: | EAP 6.4.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | Usability | ||
Fixed In Version: | Doc Type: | Known Issue | |
Doc Text: |
Cause:
Consequence:
Workaround (if any):
Results:
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2014-07-09 11:38:13 UTC | Type: | Task |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1021418, 1146502 |
Description
Jakub Cechacek
2013-09-26 17:33:06 UTC
Harald Pehl <hpehl> updated the status of jira HAL-282 to Resolved Harald Pehl <hpehl> made a comment on jira HAL-282 Fixed by HAL-281. The error message reads now "You don't have the permissions to access this resource!" This is the very same case as BZ1016546. The problem here might be the fact that this error message is shared among all unauthorized operations, thus it might be a bit confusing in some cases. Returning back to assigned, however I've changed the severity to low. In agreement with Catherine we've decided that UX issues will be tracked separately. Issue moved under the UX component. Also moved to 6.4 as this issue is still valid for 6.3. Use ack flags to decide whether we want to go through with it or not. Can we update the description of the BZ. Does current user mean any user that's logged into the console currently, or does it refer to a user that's trying to modify his own role assignments? Ideally, we would present an error message that is specific to the task that a user is trying to perform. So in this case we would mention that a 'role assignments could not be changed be because you don't have access to resource X'. User that's trying to modify his own role assignments. Harald Pehl <hpehl> updated the status of jira HAL-292 to Resolved This particular issue is fixed for EAP 6.4.0.DR3 but there are other related issues which I will report tomorrow. |