Bug 1324516 - Smart proxy details do not work for non-admin users with proper permissions
Summary: Smart proxy details do not work for non-admin users with proper permissions
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Satellite
Classification: Red Hat
Component: Users & Roles
Version: 6.0.4
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: Unspecified
Assignee: Tomer Brisker
QA Contact: jcallaha
URL: http://projects.theforeman.org/issues...
Whiteboard:
: 1324511 (view as bug list)
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-04-06 14:02 UTC by Tomer Brisker
Modified: 2019-09-25 21:18 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-07-27 10:59:10 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Foreman Issue Tracker 14505 0 None None None 2016-04-22 16:34:30 UTC

Description Tomer Brisker 2016-04-06 14:02:17 UTC
I have a user with the following permissions: 

<pre>
shell# hammer --output json user info --login XXXX
{
  "Id": XXXX,
  "Login": "XXXXX",
  "Name": "XXXXXXXXXXXXXXXX",
  "Email": "XXXXXXXXXXXXXXXXX",
  "Admin": false,
  "Authorized by": {
    "id": 1,
    "type": "AuthSourceInternal",
    "name": "Internal"
  },
  "Locale": "XX",
  "Timezone": "XX",
  "Last login": "XXXXXXXXXXXXX",
  "Default organization": null,
  "Default location": null,
  "Roles": [
    {
      "name": "AccountAdministrator",
      "id": 9
    },
    {
      "name": "Anonymous",
      "id": 8
    }
  ],
  "User groups": [
    
  ],
  "Created at": "XXXX",
  "Updated at": "XXXX"
}

    
shell# hammer --output json filter list --search "--role=AccountAdministrator"

  {
    "Id": XXXX,
    "Resource type": "SmartProxy",
    "Search": "none",
    "Unlimited?": true,
    "Role": {
      "name": "AccountAdministrator",
      "id": XXXX
    },
    "Permissions": [
      "view_smart_proxies",
      "view_smart_proxies_autosign",
      "view_smart_proxies_puppetca",
      "edit_smart_proxies_puppetca",
      "destroy_smart_proxies_puppetca"
    ]
  },
</pre>

However on centos7 + foreman-1.11.0-1.el7.noarch I can not see the certificates (See Screeshot)

If I grant "Manager" permissions to the user, it still does not work.

Comment 1 Tomer Brisker 2016-04-06 14:02:20 UTC
Created from redmine issue http://projects.theforeman.org/issues/14505

Comment 2 Tomer Brisker 2016-04-06 14:02:24 UTC
Upstream bug assigned to tbrisker

Comment 3 Tomer Brisker 2016-04-06 14:06:29 UTC
Non admin users which have proper permissions can not see link to smart proxy detail page from smart proxy index.
Also, clicking on buttons to certificates or autosign leads to the details page but both tabs are not shown.

Comment 5 Tomer Brisker 2016-04-06 14:42:06 UTC
*** Bug 1324511 has been marked as a duplicate of this bug. ***

Comment 6 Bryan Kearney 2016-04-06 16:12:58 UTC
Moving to POST since upstream bug http://projects.theforeman.org/issues/14505 has been closed
-------------
Anonymous
Applied in changeset commit:a88d4a3e9790bf863634688b286ec6f9eed12907.

Comment 7 jcallaha 2016-05-27 17:14:30 UTC
Verified in Satellite 6.2 Beta Snap 13.

Users with permissions as low as viewer can now see the details of smart proxies.

Comment 8 Bryan Kearney 2016-07-27 10:59:10 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2016:1501


Note You need to log in before you can comment on or make changes to this bug.