Bug 613918
| Summary: | User assigned to a role having only manage bundles permissions is not able to create/deploy bundle. | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Other] RHQ Project | Reporter: | Sunil Kondkar <skondkar> | ||||
| Component: | Provisioning | Assignee: | Joseph Marques <jmarques> | ||||
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Jay Shaughnessy <jshaughn> | ||||
| Severity: | high | Docs Contact: | |||||
| Priority: | urgent | ||||||
| Version: | unspecified | CC: | jmarques, jshaughn | ||||
| Target Milestone: | --- | ||||||
| Target Release: | --- | ||||||
| Hardware: | All | ||||||
| OS: | Linux | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | 2.4 | Doc Type: | Bug Fix | ||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2010-08-12 16:51:54 UTC | Type: | --- | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Bug Depends On: | |||||||
| Bug Blocks: | 577210 | ||||||
| Attachments: |
|
||||||
Created attachment 431392 [details]
Screenshot
commit 64cce78d37296a1d0c5be804687aef4e0394f86b
Author: Joseph Marques <joseph>
Date: Tue Jul 13 16:06:21 2010 -0400
BZ-613918: allow bundle managers without MANAGE_INVENTORY perm to create/delete bundles
additional fix commit: f1b2a3b10a905df46794b1defdd273b282a854e7 A few more scenarios to support manage_bundle without manage_inventory. Passed tests with additional fixes. create/delete/deploy and various gui views working. Mass-closure of verified bugs against JON. |
Description of problem: If a role has only 'Manage bundles' permission, user assigned to this role is not able to create/deploy bundle. The wizard displays below error: Failed to upload bundle distribution file org.rhq.enterprise.server.authz.PermissionException: Subject [testuser] is not authorized for [MANAGE_INVENTORY]: invocation: method=public org.rhq.core.domain.content.Repo org.rhq.enterprise.server.content.RepoManagerBean.createRepo(org.rhq.core.domain.auth.Subject,org.rhq.core.domain.content.Repo) throws org.rhq.enterprise.server.content.RepoException,context-data={} Please refer the attached screenshot. Version-Release number of selected component (if applicable): jon-2.4.0.GA_QA build#61 How reproducible: Always Steps to Reproduce: 1. Go to Administration->Security->Roles 2. Click on button 'New' to create a new role. 3. Enter a role name and check the check box 'Manage bundles' in 'Global Permissions' section. 4. Do not check any other checkbox. 5. Click on OK button. 6. Create a new user(testuser) and add user to the role created. 7. Login to jon with the user(testuser) 8. Navigate to Administrator->Content->Bundles. 9. Click on 'New' button to create a bundle. 10. Select 'Upload' radio button. 11. Browse and select a bundle file. 12. Click on 'Next' button. Actual results: If a role has only 'Manage bundles' permission, user assigned to this role is not able to create/deploy bundle. Expected results: User assigned to a role having 'Manage bundles' permissions should be able to create/deploy a bundle. Additional info: