h3. Steps to Reproduce 1. Create a non-admin user 2. Give them the "view_content_hosts" permission 3. Go to systems -> choose a system -> product content 4. Notice you can see edit buttons 5. Attempt to save 6. Notice 403
Created from redmine issue http://projects.theforeman.org/issues/6479
Upstream bug assigned to walden
PR: https://github.com/Katello/katello/pull/4383
commit f2079e13b8b2ae3aa4fba89d1bec62b758bcb9a0 Merge: 5bbadc3 22032b7 Author: Walden Raines <walden> Date: Mon Jul 7 10:44:58 2014 -0400 Merge pull request #4383 from waldenraines/6479 Fixes #6479/BZ1115633: hide product content edit button if applicable commit ea15661e2af6b05ebaa86da38d3e18a8c24485f5 Author: Walden Raines <walden> Date: Fri Jun 27 08:23:58 2014 -0400 Fixes #6078, #6300, BZ1105175, BZ1097054: fix invalid limit fields. This commit changes the way we handle limited fields such as Content Host number of systems and Activation Key usage limit. Instead of representing "unlimited" as -1 we now represent it as a boolean on the object. http://projects.theforeman.org/issues/6078 http://projects.theforeman.org/issues/6300 https://bugzilla.redhat.com/show_bug.cgi?id=1105175 https://bugzilla.redhat.com/show_bug.cgi?id=1097054
DISREGARD THE PREVIOUS COMMENT, IT HAS THE WRONG COMMITS. Here are the correct commits: commit f2079e13b8b2ae3aa4fba89d1bec62b758bcb9a0 Merge: 5bbadc3 22032b7 Author: Walden Raines <walden> Date: Mon Jul 7 10:44:58 2014 -0400 Merge pull request #4383 from waldenraines/6479 Fixes #6479/BZ1115633: hide product content edit button if applicable commit 22032b7d2fdc23d21f31f4aceaa0522b3fa85e57 Author: Walden Raines <walden> Date: Wed Jul 2 15:55:57 2014 -0400 Fixes #6479/BZ1115633: hide product content edit button if applicable If the user does not have permission do not show the product content edit button. http://projects.theforeman.org/issues/6479 https://bugzilla.redhat.com/show_bug.cgi?id=1115633
Failed. Steps: 1. Create a non-admin user 2. Give them the "view_content_hosts" permission 3. Go to Hosts -> Content Hosts -> choose a Content Host -> product content 4. The page kept on loading...(see screenshot) Version Tested: Satellite-6.0.4-RHEL-6-20140723.0 * apr-util-ldap-1.3.9-3.el6_0.1.x86_64 * candlepin-0.9.19-1.el6_5.noarch * candlepin-scl-1-5.el6_4.noarch * candlepin-scl-quartz-2.1.5-5.el6_4.noarch * candlepin-scl-rhino-1.7R3-1.el6_4.noarch * candlepin-scl-runtime-1-5.el6_4.noarch * candlepin-selinux-0.9.19-1.el6_5.noarch * candlepin-tomcat6-0.9.19-1.el6_5.noarch * elasticsearch-0.90.10-4.el6sat.noarch * foreman-1.6.0.29-1.el6sat.noarch * foreman-compute-1.6.0.29-1.el6sat.noarch * foreman-gce-1.6.0.29-1.el6sat.noarch * foreman-libvirt-1.6.0.29-1.el6sat.noarch * foreman-ovirt-1.6.0.29-1.el6sat.noarch * foreman-postgresql-1.6.0.29-1.el6sat.noarch * foreman-proxy-1.6.0.21-1.el6sat.noarch * foreman-selinux-1.6.0-8.el6sat.noarch * foreman-vmware-1.6.0.29-1.el6sat.noarch * katello-1.5.0-27.el6sat.noarch * katello-ca-1.0-1.noarch * katello-certs-tools-1.5.6-1.el6sat.noarch * katello-installer-0.0.56-1.el6sat.noarch * openldap-2.4.23-32.el6_4.1.x86_64 * pulp-katello-0.3-3.el6sat.noarch * pulp-nodes-common-2.4.0-0.23.beta.el6sat.noarch * pulp-nodes-parent-2.4.0-0.23.beta.el6sat.noarch * pulp-puppet-plugins-2.4.0-0.23.beta.el6sat.noarch * pulp-puppet-tools-2.4.0-0.23.beta.el6sat.noarch * pulp-rpm-plugins-2.4.0-0.23.beta.el6sat.noarch * pulp-selinux-2.4.0-0.23.beta.el6sat.noarch * pulp-server-2.4.0-0.23.beta.el6sat.noarch * python-ldap-2.3.10-1.el6.x86_64 * ruby193-rubygem-net-ldap-0.3.1-3.el6sat.noarch * ruby193-rubygem-runcible-1.1.0-2.el6sat.noarch
Created attachment 922353 [details] Content Host - Product Content tab not loading
(In reply to sthirugn from comment #8) > Failed. > > Steps: > 1. Create a non-admin user > 2. Give them the "view_content_hosts" permission > 3. Go to Hosts -> Content Hosts -> choose a Content Host -> product content > 4. The page kept on loading...(see screenshot) I filed #1124607 for this as it's a separate bug than what is described above.
Bug #1124607
This is blocked until 1124607 is fixed.
ON_QA status means that the bug is ready to test for QA. But this is blocked with an other issue. Demoting to Assigned. Please move this to ON_QA when the other bug is fixed.
Bug #1124607 is also ON_QA though.
Verified. The product content tab is now hidden for a user with permission - view_content_hosts. Version Tested: GA Snap 4 - Satellite-6.0.4-RHEL-6-20140806.0 * apr-util-ldap-1.3.9-3.el6_0.1.x86_64 * candlepin-0.9.19-1.el6_5.noarch * candlepin-scl-1-5.el6_4.noarch * candlepin-scl-quartz-2.1.5-5.el6_4.noarch * candlepin-scl-rhino-1.7R3-1.el6_4.noarch * candlepin-scl-runtime-1-5.el6_4.noarch * candlepin-selinux-0.9.19-1.el6_5.noarch * candlepin-tomcat6-0.9.19-1.el6_5.noarch * elasticsearch-0.90.10-4.el6sat.noarch * foreman-1.6.0.38-1.el6sat.noarch * foreman-compute-1.6.0.38-1.el6sat.noarch * foreman-gce-1.6.0.38-1.el6sat.noarch * foreman-libvirt-1.6.0.38-1.el6sat.noarch * foreman-ovirt-1.6.0.38-1.el6sat.noarch * foreman-postgresql-1.6.0.38-1.el6sat.noarch * foreman-proxy-1.6.0.23-1.el6sat.noarch * foreman-selinux-1.6.0.4-1.el6sat.noarch * foreman-vmware-1.6.0.38-1.el6sat.noarch * katello-1.5.0-28.el6sat.noarch * katello-ca-1.0-1.noarch * katello-certs-tools-1.5.6-1.el6sat.noarch * katello-installer-0.0.57-1.el6sat.noarch * openldap-2.4.23-34.el6_5.1.x86_64 * pulp-katello-0.3-3.el6sat.noarch * pulp-nodes-common-2.4.0-0.30.beta.el6sat.noarch * pulp-nodes-parent-2.4.0-0.30.beta.el6sat.noarch * pulp-puppet-plugins-2.4.0-0.30.beta.el6sat.noarch * pulp-puppet-tools-2.4.0-0.30.beta.el6sat.noarch * pulp-rpm-plugins-2.4.0-0.30.beta.el6sat.noarch * pulp-selinux-2.4.0-0.30.beta.el6sat.noarch * pulp-server-2.4.0-0.30.beta.el6sat.noarch * python-ldap-2.3.10-1.el6.x86_64 * ruby193-rubygem-net-ldap-0.3.1-3.el6sat.noarch * ruby193-rubygem-runcible-1.1.0-2.el6sat.noarch * sssd-ldap-1.11.5.1-3.el6.x86_64
This was delivered with Satellite 6.0 which was released on 10 September 2014.