Bug 1557400

Summary: Physical server quadicon switch under My Settings doesn't respect RBAC rules
Product: Red Hat CloudForms Management Engine Reporter: Satoe Imaishi <simaishi>
Component: UI - OPSAssignee: Dávid Halász <dhalasz>
Status: CLOSED ERRATA QA Contact: Landon LaSmith <llasmith>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 5.9.0CC: hkataria, lavenel, llasmith, mpovolny, obarenbo
Target Milestone: GAKeywords: ZStream
Target Release: 5.9.2   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 5.9.2.0 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1555400 Environment:
Last Closed: 2018-05-07 20:46:21 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Embargoed:
Bug Depends On: 1555400    
Bug Blocks:    

Comment 2 CFME Bot 2018-03-16 15:52:31 UTC 
New commit detected on ManageIQ/manageiq-ui-classic/gaprindashvili:

https://github.com/ManageIQ/manageiq-ui-classic/commit/4bb5f698aa7b8eb95f8d72b77d07b36b7896795d
commit 4bb5f698aa7b8eb95f8d72b77d07b36b7896795d
Author:     Milan Zázrivec <mzazrivec>
AuthorDate: Thu Mar 15 08:48:50 2018 -0400
Commit:     Milan Zázrivec <mzazrivec>
CommitDate: Thu Mar 15 08:48:50 2018 -0400

    Merge pull request #3625 from skateman/physical-server-rbac-quad

    Respect RBAC rules for physical server quadicon settings
    (cherry picked from commit e36308c72b246ee9606f677bfb9837a31f9e1ffc)

    Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1557400

 app/views/configuration/_ui_1.html.haml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
Comment 3 Landon LaSmith 2018-04-02 18:46:42 UTC 
VERIFIED in 5.9.2. I created a user with admin permissions and admin permissions w/ no Physical Server permissions. Logging in as that user and changing to the group with no physical server permissions resulted in "Show Physical Server Quadrants" not being shown. Changing back and forth between groups with and without Physical Server access resulted in the "Show Physical Server Quadrants" being disabled accordingly
Comment 6 errata-xmlrpc 2018-05-07 20:46:21 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2018:1328