Bug 1487179
| Summary: | Tag/Networks: Cloud Network list is available for restricted user, if Network manager was tagged | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Red Hat CloudForms Management Engine | Reporter: | Ruslana Babyuk <rbabyuk> | ||||||
| Component: | Appliance | Assignee: | Gregg Tanzillo <gtanzill> | ||||||
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Ruslana Babyuk <rbabyuk> | ||||||
| Severity: | medium | Docs Contact: | |||||||
| Priority: | high | ||||||||
| Version: | 5.8.0 | CC: | abellott, cpelland, dajohnso, gtanzill, hkataria, jhardy, llasmith, lpichler, mfeifer, mpovolny, obarenbo, rbabyuk, simaishi | ||||||
| Target Milestone: | GA | Keywords: | Regression, TestOnly, ZStream | ||||||
| Target Release: | 5.9.0 | ||||||||
| Hardware: | Unspecified | ||||||||
| OS: | Unspecified | ||||||||
| Whiteboard: | ui:tag | ||||||||
| Fixed In Version: | 5.9.0.1 | Doc Type: | If docs needed, set a value | ||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | |||||||||
| : | 1497835 1498095 (view as bug list) | Environment: | |||||||
| Last Closed: | 2018-03-06 15:44:31 UTC | Type: | Bug | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | CFME Core | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Bug Depends On: | |||||||||
| Bug Blocks: | 1497835, 1498095 | ||||||||
| Attachments: |
|
||||||||
|
Description
Ruslana Babyuk
2017-08-31 11:47:19 UTC
Gregg, Dan is thinking this is a backend issue and requesting your team do a first round of investigation. Ruslana is a superstar so put a needinfo on her if you need any assistance!!! Ruslana, is this new to 5.8.2 or in 5.8.1 as well? Please add regression keyword and blocker flag if it is working in 5.8.1 please. Also, you nack'd the qe_test_coverage flag, you don't think we need a test for this, sounds like we should, maybe for rbac FA and Landon LaSmith. Checked 5.8.1, works as expected. Add regression keyword Also agree that we need to add test cases to cover provider, network provider, and storage provider. Libor and I tested this with a 5.8.2 appliance and did not see any issues. We followed the steps detailed in the description. As the "restricted" user we were only able to see the Cloud Network (under Network / Networks) that was tagged with the same tag as the user. We were also able to see the details page of that accessible Cloud Network. If you reproducer appliance please let us know and we'll continue to investigate. Hi, Yes, I have the appliance with the issue had been reproduced, please check 10.8.196.231. Restricted users: userall/111 or usertest/111. And some more info for reproducing, only Network Manager(Networks -> Provider) should be tagged, and at the same time no tagging for Cloud Network(Network -> Networks). Also please check https://bugzilla.redhat.com/show_bug.cgi?id=1445163, I am not sure, but this fix could have some impact on the current issue. Thanks Created attachment 1328841 [details]
empty_lists_no_tags
no tagged items
Created attachment 1328842 [details]
network_manager_tagged
only network manager is tagged but also cloud network is visible
New commit detected on ManageIQ/manageiq/master: https://github.com/ManageIQ/manageiq/commit/847cbcd498861af2defc2341ba45ff7dff05302e commit 847cbcd498861af2defc2341ba45ff7dff05302e Author: lpichler <lpichler> AuthorDate: Sun Oct 1 21:45:52 2017 +0200 Commit: lpichler <lpichler> CommitDate: Sun Oct 1 21:45:52 2017 +0200 Add test cases related with tag network managers related to case from https://bugzilla.redhat.com/show_bug.cgi?id=1487179 spec/lib/rbac/filterer_spec.rb | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) |