Bug 1191222
| Summary: | FATAL -- : Error caught: [MiqException::RbacPrivilegeException] The user is not authorized for this task or item. | ||
|---|---|---|---|
| Product: | Red Hat CloudForms Management Engine | Reporter: | Harpreet Kataria <hkataria> |
| Component: | UI - OPS | Assignee: | Harpreet Kataria <hkataria> |
| Status: | CLOSED ERRATA | QA Contact: | Aziza Karol <akarol> |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | 5.3.0 | CC: | akarol, dajohnso, david.costakos, fdewaley, jhardy, jocarter, jprause, kmorey, mfeifer, obarenbo, ssainkar, xlecauch |
| Target Milestone: | GA | Keywords: | ZStream |
| Target Release: | 5.3.4 | ||
| Hardware: | All | ||
| OS: | All | ||
| Whiteboard: | |||
| Fixed In Version: | 5.3.4.1 | Doc Type: | Bug Fix |
| Doc Text: |
In the previous version, role_allows? method was set to false. As a result, self-service users were unable to see utilization metrics for their own VMs, resulting in RBAC error.
role_allows? method has been changed to return true for common hidden features and users can now see the utilization metrics without an error.
|
Story Points: | --- |
| Clone Of: | 1191197 | Environment: | |
| Last Closed: | 2015-04-29 13:19:01 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1191197 | ||
| Bug Blocks: | |||
|
Comment 1
CFME Bot
2015-02-10 22:25:44 UTC
New commit detected on cfme/5.3.z: https://code.engineering.redhat.com/gerrit/gitweb?p=cfme.git;a=commitdiff;h=0464405398e30e35b7a4dfdbb69b85fb952e7870 commit 0464405398e30e35b7a4dfdbb69b85fb952e7870 Author: Harpreet Kataria <hkataria> AuthorDate: Tue Feb 10 13:09:46 2015 -0500 Commit: Harpreet Kataria <hkataria> CommitDate: Tue Feb 10 17:26:17 2015 -0500 Changed role_allows? method to return true for common hidden features. - Changed role_allows? method to return true for common hidden features that are for read only buttons are used from different screen and are under a hidden parent. - Added parent_for_feature method to MiqProductFeature model that returns parent feature of a passed in feature. - Extended assert_privileges test to test hidden feature https://bugzilla.redhat.com/show_bug.cgi?id=1191222 https://bugzilla.redhat.com/show_bug.cgi?id=1191197 (cherry picked from commit 9dae9f7) vmdb/app/models/miq_product_feature.rb | 4 ++++ vmdb/app/models/user.rb | 8 +++++++- vmdb/spec/controllers/application_controller_spec.rb | 8 +++++++- 3 files changed, 18 insertions(+), 2 deletions(-) New commit detected on cfme/5.3.z: https://code.engineering.redhat.com/gerrit/gitweb?p=cfme.git;a=commitdiff;h=5122ebb9891c35539fd973914deea9b6d9736b9b commit 5122ebb9891c35539fd973914deea9b6d9736b9b Author: Harpreet Kataria <hkataria> AuthorDate: Wed Feb 11 11:57:38 2015 -0500 Commit: Harpreet Kataria <hkataria> CommitDate: Wed Feb 11 11:57:38 2015 -0500 Fixed failing spec test. Changed feature id to be the parent id of feature that needs to be checked, seeding of specific features on 5.3.z is done differently have to load the parent node to seed a feature. https://bugzilla.redhat.com/show_bug.cgi?id=1191222 https://bugzilla.redhat.com/show_bug.cgi?id=1191197 vmdb/spec/controllers/application_controller_spec.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) *** Bug 1208565 has been marked as a duplicate of this bug. *** Verified: 5.3.4.2.20150415125246_f5d5c91 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2015-0890.html |