Bug 1441637

Summary: Tag Visibility | All cloud key pairs is visible for restricted user
Product: Red Hat CloudForms Management Engine Reporter: Ruslana Babyuk <rbabyuk>
Component: ApplianceAssignee: Gregg Tanzillo <gtanzill>
Status: CLOSED ERRATA QA Contact: Ruslana Babyuk <rbabyuk>
Severity: medium Docs Contact:
Priority: high    
Version: 5.7.0CC: abellott, dajohnso, gtanzill, hkataria, jhardy, lpichler, mpovolny, obarenbo, simaishi
Target Milestone: GA   
Target Release: 5.9.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: tag:cloud:rbac
Fixed In Version: 5.9.0.1 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2018-03-01 13:11:36 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: Bug
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Embargoed:

Description Ruslana Babyuk 2017-04-12 11:41:59 UTC 
Description of problem:
Restricted user can see all key pairs, while the tag is set in the group

Version-Release number of selected component (if applicable):5.7.2.1

How reproducible:
100%

Steps to Reproduce:
1. Add cloud provider(in my case rhos7-ga)
2. Add role, group, and user
3. Assign tag in the group
4. Add tag to any key pair
5. Login as restricted user
6. Navigate to Key Pairs page

Actual results:
All list of key pairs is visible

Expected results:
Only tagged key pair should be visible for the user
Comment 2 Ruslana Babyuk 2017-04-12 11:47:21 UTC 
The same issue also reproduces with Host Aggregates
Comment 3 Libor Pichler 2017-06-13 12:07:40 UTC 
*** Bug 1403008 has been marked as a duplicate of this bug. ***
Comment 7 errata-xmlrpc 2018-03-01 13:11:36 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2018:0380