New commit detected on ManageIQ/manageiq/euwe: https://github.com/ManageIQ/manageiq/commit/9be9b26d0351aa09cef3d9dadc9a9fcbad32d957 commit 9be9b26d0351aa09cef3d9dadc9a9fcbad32d957 Author: Milan Zázrivec <mzazrivec> AuthorDate: Tue Jan 17 17:28:02 2017 +0100 Commit: Satoe Imaishi <simaishi> CommitDate: Fri Jan 20 10:33:25 2017 -0500 Merge pull request #151 from martinpovolny/tenant_escape Tenant admin should not be able to create groups in other tenants. (cherry picked from commit 637a45d6312827c4a2f15048361d86ec5f2198ac) https://bugzilla.redhat.com/show_bug.cgi?id=1415217 app/controllers/ops_controller/ops_rbac.rb | 15 ++++++++++++++- 1 file changed, 14 insertions(+), 1 deletion(-)
New commit detected on ManageIQ/manageiq/euwe: https://github.com/ManageIQ/manageiq/commit/c43b90c82a71250aeed15b9a50cf0cd2456128b3 commit c43b90c82a71250aeed15b9a50cf0cd2456128b3 Author: Milan Zázrivec <mzazrivec> AuthorDate: Fri Jan 20 13:49:05 2017 +0100 Commit: Satoe Imaishi <simaishi> CommitDate: Fri Jan 20 10:33:56 2017 -0500 Merge pull request #203 from martinpovolny/fix_valid_tenant Fix valid_tenant check in ops. (cherry picked from commit 4d38cb9c147dcce7048ba3920a3e3be86482fdb7) https://bugzilla.redhat.com/show_bug.cgi?id=1415217 app/controllers/ops_controller/ops_rbac.rb | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-)
New commit detected on ManageIQ/manageiq/euwe: https://github.com/ManageIQ/manageiq/commit/a4ba5f23a4e77e631dca2f9f877608a088ad8d0c commit a4ba5f23a4e77e631dca2f9f877608a088ad8d0c Author: Gregg Tanzillo <gtanzill> AuthorDate: Tue Jan 17 08:59:45 2017 -0500 Commit: Satoe Imaishi <simaishi> CommitDate: Mon Jan 23 13:37:59 2017 -0500 Merge pull request #13483 from martinpovolny/group_tenant_limit Tenant admin should not be able to create groups in other tenants. (cherry picked from commit be680ff7bd88736d2a1d0a2f6343bc233a1dc944) https://bugzilla.redhat.com/show_bug.cgi?id=1415217 app/models/tenant.rb | 6 ++++-- spec/models/tenant_spec.rb | 31 +++++++++++++++++++++---------- 2 files changed, 25 insertions(+), 12 deletions(-)
Verified in 5.7.1.2. I can create groups only for my tenant now under tenant administrator.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHSA-2017-0320.html