Red Hat Bugzilla – Bug 1289724
[ENG][6.2.z] User with no privileges for repository can view and modify assets in that repository
Last modified: 2016-07-31 21:20:21 EDT
I'm sorry to say, there is still more to fix.
With access restrictions set up, even unprivileged user can see the assets via the Recently edited/opened (authoring -> explore).
The Latest changes section in Timeline perspective offers all repos in the filter featurette, even those that shouldn't be visible to the user. The good thing is, the assets/changes from those org.units/repos/projects that the user shouldn't see are still not shown in the latest changes - only the options for filtering are affected.
An admin can see everything in the Administration perspective, but I think that is expected..?
I wasn't able to verify with Inbox and the Find feature, because they didn't show any assets, even without restriction.
The simple search feature (input line with magnifier) is fixed.
Project explorer behaves correctly.