Bug 1145512

Summary: Information about the read-only functions in API Overview.
Product: Red Hat Satellite 5 Reporter: Martin Korbel <mkorbel>
Component: APIAssignee: Grant Gainey <ggainey>
Status: CLOSED DUPLICATE QA Contact: Red Hat Satellite QA List <satqe-list>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 570CC: ggainey
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-10-01 12:16:26 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Martin Korbel 2014-09-23 08:45:06 UTC 
Description of problem:
I think, we need some informations in API Overview, which of functions are accessible for the read-only users. Because not all getter functions are accessible for read-only users (few examples  are below).

Here is some examples:
packages.provider.list
satellite.getCertificateExpirationDate
sync.slave.getSlaves
org.listSoftwareEntitlements
org.listSystemEntitlements
org.listOrgs
sync.master.getMasters
user.external.listExternalGroupToRoleMaps
user.external.getKeepTemporaryRoles
user.external.getUseOrgUnit
user.external.getDefaultOrg
...


Version-Release number of selected component (if applicable):
Sat 5.7 (spacewalk-html-2.3.2-3.el6sat, spacewalk-java-2.3.8-15.el6sat)

How reproducible:
100%

Steps to Reproduce:
1. open page https://<fqdn>/rhn/apidoc/handlers/PackagesProviderHandler.jsp

Actual results:
no informations about read-only functions.

Expected results:
some  icons or tags, what say "This functions is also accessible for the read-only user."

Additional info:
Comment 1 Grant Gainey 2014-09-25 19:26:13 UTC 
Read-only users have access to any API that their other Satellite permissions give them access to.  org.listOrgs, for example, is limited to only Satellite Administrators.  If you have a read-only user who is a Satellite Admin, they have access to that API method.

read-only means that, no matter what your other privileges, you may not access the web-ui, and may only access API methods whose names start with get/list/is. Access to those methods is then further limited by the user's regular Satellite privileges.

It sounds like what we're really asking for here, is an icon per-method for which privilege it requires.   That's going to take some doing, since each method makes up its own mind about what privs it requires.
Comment 2 Martin Korbel 2014-10-01 12:16:26 UTC 

*** This bug has been marked as a duplicate of bug 1147832 ***