Red Hat Bugzilla – Bug 1461212
[RFE] RBAC for API user access
Last modified: 2017-06-20 01:43:12 EDT
Description of problem:
Currently when the user connect thru rest API the user can view any thing under /api/* can the user be just limit to items has access to it.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Saif, can you add some more details? Are you saying that the user is able to see all the actions available under /api/* or are they able to see managed objects that their RBAC should not allow?