Description of problem: Currently when the user connect thru rest API the user can view any thing under /api/* can the user be just limit to items has access to it. Version-Release number of selected component (if applicable): 4.2 How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Saif, can you add some more details? Are you saying that the user is able to see all the actions available under /api/* or are they able to see managed objects that their RBAC should not allow?
Dear customer, The CloudForms team is reviewing the current CloudForms RFE(Request for Enhancement) backlog in order to improve our responsiveness to customers. We are closing any requests for versions no longer within full support(link below to the lifecycle) or that do not have a clear spot on the product roadmap. We are committing to better management of the backlog as we move forward. If you have an RFE that you still have a strong business case for, please open a new BZ against the currently supported version 4.6. Lifecycle page: https://access.redhat.com/support/policy/updates/cloudforms If you have any concerns about this, please let us know. Thanks and regards!”
*** Bug 1468344 has been marked as a duplicate of this bug. ***