Bug 1304815
| Summary: | Non-admin user can not add or Remove Host Collection to or from Activation Key. | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Red Hat Satellite | Reporter: | Prakash Ghadge <pghadge> | ||||||
| Component: | Users & Roles | Assignee: | Brad Buckingham <bbuckingham> | ||||||
| Status: | CLOSED ERRATA | QA Contact: | jcallaha | ||||||
| Severity: | medium | Docs Contact: | |||||||
| Priority: | high | ||||||||
| Version: | 6.1.5 | CC: | akofink, bbuckingham, bgh, bkearney, cpatters, dgupte, dhawke, jcallaha, jnikolak, mgrigull, mmccune, oshtaier, satellite6-bugs, sauchter, sthirugn, xdmoon, zhunting | ||||||
| Target Milestone: | Unspecified | Keywords: | Triaged | ||||||
| Target Release: | Unused | ||||||||
| Hardware: | x86_64 | ||||||||
| OS: | Linux | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | tfm-rubygem-katello-3.0.0.86-1 | Doc Type: | Bug Fix | ||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | |||||||||
| : | 1394389 (view as bug list) | Environment: | |||||||
| Last Closed: | 2016-12-12 17:10:19 UTC | Type: | Bug | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Bug Depends On: | |||||||||
| Bug Blocks: | 1316897, 1394389 | ||||||||
| Attachments: |
|
||||||||
*** Bug 1384728 has been marked as a duplicate of this bug. *** Created redmine issue http://projects.theforeman.org/issues/16997 from this bug Proposed fix in Katello PR: https://github.com/Katello/katello/pull/6402 I tested this under Satellite 6.1.10 Customer tested this under Satellite 6.2.2 --> foreman-1.11.0.53-1.el7sat.noarch He has also reported that subscriptions are not showing up (which is a more major defect) when using a non-admin role. When using an admin role, the subscriptions do show. I'm currently verifying if I'm seeing the situation with roles on my Satellite. In 6.2.2 I've confirmed that if you add all Roles, or specify a Role with everything, that there isn't a way to view the subscription inside the activation key. Is it possible to get the missing subscription inside the activation key also resolved. It looks like the issue raised by comment 10 and 11 has already been addressed by bug 1333219. If it is Ok, we'll keep this one focused on the initial issue raised for host collections. Yes it will be fine to focus on host collections. Verified in Satellite 6.2.5 Create a user with only the required permissions and was able to successfully view/add/remove host collections from the activation key. see attached screenshots Created attachment 1227015 [details]
verification screenshot
Created attachment 1227016 [details]
role permissions
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2016:2940 *** Bug 1404474 has been marked as a duplicate of this bug. *** |
Description of problem: When logging on with a non admin user with an role with all rights on Activation Key and Host Collections, it is not possible to Add or Remove Host Collections from Activation Keys. The add or remove button is not present. Version-Release number of selected component (if applicable): Satellite 6.1 How reproducible: Always Steps to Reproduce: User logged on to Satellite webinterface with: - No admin rights - Role assigned with: - create_activation_keys, edit_activation_keys, destroy_activation_keys, view_activation_keys permissions on Activation Keys - view_host_collections, create_host_collections, edit_host_collections, destroy_host_collections on Host Collections - Navigate to: Content --> Activation Keys --> Select existing Activation Key --> TAB Host Collections - No Add or Remove button is visible to be able to add or remove host collections from the Activation Key, Actual results: No add or remove button. Expected results: webUI should provide add and remove button for non-admin user.