Description of problem:
According to Redhat doc, role EvmRole-auditor should have no permission on perform any actions on VMs. However, users having that role are able to poweron/poweroff VMs
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
1. Create a user and assign role EvmRole-auditor
2.Login with the user
3.Go to any VM and click on the Power button, all actions are visible and can be performed.
Actual results:
User is able to poweron/poweroff VMs
Expected results:
User shouldn't even be able to see the power button or actions should be disabled
Additional info:
EvmRole-security has the same problem.
As a workaround you can copy the pre-defined Auditor role to a new role, fix the permissions under the new role and assign the new role in place of the pre-defined role.
I am working on a fix here: https://github.com/ManageIQ/manageiq/pull/16394
Hi Martin,
Thank you very much for working on the fix.
CloudForms is the best in its kind and I am very happy to see it's getting better and better because of you guys. Awesome!
Regards,
George Field