Bug 1432600

Summary: Changing Role Access Restriction to "Users and Group" Disables Visibility of Users and Groups of Tenant
Product: Red Hat CloudForms Management Engine Reporter: myoder
Component: ApplianceAssignee: Gregg Tanzillo <gtanzill>
Status: CLOSED NOTABUG QA Contact: Dave Johnson <dajohnso>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.7.0CC: abellott, aperotti, gblomqui, jhardy, lavenel, obarenbo, rbabyuk
Target Milestone: GA   
Target Release: cfme-future   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2018-01-29 18:44:46 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: Bug
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1468726    

Description myoder 2017-03-15 18:22:04 UTC 
Description of problem:

When I copy the Role EVMRole_tenant_administrator to another role, i.e. tenant_admin, and change "VM & Template Access Restriction" to "Only Users or Group Owned" any user using this new role, can not see any fellow users or groups that belong to the same tenant.


Version-Release number of selected component (if applicable):
5.7.1.3

How reproducible:
Always

Steps to Reproduce:
1.  Create a tenant 'Super'
2.  Create several users and groups that belong to this tenant
3.  Create a new role and modify the "VM and Template Access Restrictions" to "Only user or group owned"
4.  Login as user with the new role, and navigate to Access Control and look at users and groups. 

Actual results: 
User can not see any fellow users or groups belonging to the same tenant


Expected results:
Expect to see other users or groups belonging to the same tenant.

Additional info:
Comment 2 Loic Avenel 2017-12-14 14:47:07 UTC 
"Only user or group owned" is used to provide visibility of VMs or Templates for people are part of the same group of Tenants. This is not maint to see Users or Groups in Access Control.

I think here we need to understand the requirements?
Comment 5 Andrea Perotti 2018-01-29 18:44:46 UTC 
Customer misunderstood the usage of the feature.

Closing because is not a bug.