Red Hat Bugzilla – Bug 1461212
[RFE] RBAC for API user access
Last modified: 2018-01-11 01:55:05 EST
Description of problem:
Currently when the user connect thru rest API the user can view any thing under /api/* can the user be just limit to items has access to it.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Saif, can you add some more details? Are you saying that the user is able to see all the actions available under /api/* or are they able to see managed objects that their RBAC should not allow?