Bug 1191222 - FATAL -- : Error caught: [MiqException::RbacPrivilegeException] The user is not authorized for this task or item.
Summary: FATAL -- : Error caught: [MiqException::RbacPrivilegeException] The user is n...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat CloudForms Management Engine
Classification: Red Hat
Component: UI - OPS
Version: 5.3.0
Hardware: All
OS: All
high
high
Target Milestone: GA
: 5.3.4
Assignee: Harpreet Kataria
QA Contact: Aziza Karol
URL:
Whiteboard:
: 1208565 (view as bug list)
Depends On: 1191197
Blocks:
TreeView+ depends on / blocked
 
Reported: 2015-02-10 18:06 UTC by Harpreet Kataria
Modified: 2019-06-13 08:13 UTC (History)
12 users (show)

Fixed In Version: 5.3.4.1
Doc Type: Bug Fix
Doc Text:
In the previous version, role_allows? method was set to false. As a result, self-service users were unable to see utilization metrics for their own VMs, resulting in RBAC error. role_allows? method has been changed to return true for common hidden features and users can now see the utilization metrics without an error.
Clone Of: 1191197
Environment:
Last Closed: 2015-04-29 13:19:01 UTC
Category: ---
Cloudforms Team: ---
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Knowledge Base (Solution) 1444313 0 None None None Never
Red Hat Product Errata RHBA-2015:0890 0 normal SHIPPED_LIVE cfme (5.3.4) bug fix and enhancement update 2015-04-29 17:18:32 UTC

Comment 1 CFME Bot 2015-02-10 22:25:44 UTC 
New commit detected on manageiq/master:
https://github.com/ManageIQ/manageiq/commit/9dae9f70d36a5ba5ff265f780b4b81fd460e5666

commit 9dae9f70d36a5ba5ff265f780b4b81fd460e5666
Author:     Harpreet Kataria <hkataria>
AuthorDate: Tue Feb 10 13:09:46 2015 -0500
Commit:     Harpreet Kataria <hkataria>
CommitDate: Tue Feb 10 15:19:22 2015 -0500

    Changed role_allows? method to return true for common hidden features.
    
    - Changed role_allows? method to return true for common hidden features that are for read only buttons are used from different screen and are under a hidden parent.
    - Added parent_for_feature method to MiqProductFeature model that returns parent feature of a passed in feature.
    - Extended assert_privileges test to test hidden feature
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1191222
    https://bugzilla.redhat.com/show_bug.cgi?id=1191197

 vmdb/app/models/miq_product_feature.rb               |  4 ++++
 vmdb/app/models/user.rb                              |  8 +++++++-
 vmdb/spec/controllers/application_controller_spec.rb | 10 ++++++++--
 3 files changed, 19 insertions(+), 3 deletions(-)
Comment 2 CFME Bot 2015-02-10 22:30:43 UTC 
New commit detected on cfme/5.3.z:
https://code.engineering.redhat.com/gerrit/gitweb?p=cfme.git;a=commitdiff;h=0464405398e30e35b7a4dfdbb69b85fb952e7870

commit 0464405398e30e35b7a4dfdbb69b85fb952e7870
Author:     Harpreet Kataria <hkataria>
AuthorDate: Tue Feb 10 13:09:46 2015 -0500
Commit:     Harpreet Kataria <hkataria>
CommitDate: Tue Feb 10 17:26:17 2015 -0500

    Changed role_allows? method to return true for common hidden features.
    
    - Changed role_allows? method to return true for common hidden features that are for read only buttons are used from different screen and are under a hidden parent.
    - Added parent_for_feature method to MiqProductFeature model that returns parent feature of a passed in feature.
    - Extended assert_privileges test to test hidden feature
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1191222
    https://bugzilla.redhat.com/show_bug.cgi?id=1191197
    (cherry picked from commit 9dae9f7)

 vmdb/app/models/miq_product_feature.rb               | 4 ++++
 vmdb/app/models/user.rb                              | 8 +++++++-
 vmdb/spec/controllers/application_controller_spec.rb | 8 +++++++-
 3 files changed, 18 insertions(+), 2 deletions(-)
Comment 3 CFME Bot 2015-02-11 17:00:46 UTC 
New commit detected on cfme/5.3.z:
https://code.engineering.redhat.com/gerrit/gitweb?p=cfme.git;a=commitdiff;h=5122ebb9891c35539fd973914deea9b6d9736b9b

commit 5122ebb9891c35539fd973914deea9b6d9736b9b
Author:     Harpreet Kataria <hkataria>
AuthorDate: Wed Feb 11 11:57:38 2015 -0500
Commit:     Harpreet Kataria <hkataria>
CommitDate: Wed Feb 11 11:57:38 2015 -0500

    Fixed failing spec test.
    
    Changed feature id to be the parent id of feature that needs to be checked, seeding of specific features on 5.3.z is done differently have to load the parent node to seed a feature.
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1191222
    https://bugzilla.redhat.com/show_bug.cgi?id=1191197

 vmdb/spec/controllers/application_controller_spec.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
Comment 5 Roman Blanco 2015-04-07 20:48:57 UTC 
*** Bug 1208565 has been marked as a duplicate of this bug. ***
Comment 6 Aziza Karol 2015-04-22 06:34:22 UTC 
Verified: 	
5.3.4.2.20150415125246_f5d5c91
Comment 8 errata-xmlrpc 2015-04-29 13:19:01 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-0890.html
Note You need to log in before you can comment on or make changes to this bug.