Bug 1477015 - [RFE] A non-admin users with view permissions are unable to view resource details since they are only displayed in the edit form.
[RFE] A non-admin users with view permissions are unable to view resource det...
Status: NEW
Product: Red Hat Satellite 6
Classification: Red Hat
Component: WebUI (Show other bugs)
6.2.10
Unspecified Unspecified
medium Severity low (vote)
: Unspecified
: --
Assigned To: satellite6-bugs
Katello QA List
: FutureFeature, PrioBumpPM, Triaged, UserExperience
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-08-01 01:02 EDT by Jayant Bhatia
Modified: 2017-08-10 12:26 EDT (History)
10 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Jayant Bhatia 2017-08-01 01:02:23 EDT
Description of problem:

A non-admin user with viewer role or 'view_provisioning_templates' permission is only able to see the list (name) of provisioning templates and unable to see the template box or details of the provisioning template.

Version-Release number of selected component (if applicable):


How reproducible: (Always)

Steps to Reproduce:

1) Create a non-admin user and assign 'Viewer' role to it or assign a custom role having 'view_provisioning_templates' permissions filter added to it.

2) From Satellite web interface navigate to 'Hosts' -> 'Provisioning templates'.

3) Click on the name of any provisioning templates being listed.

Actual results:

No action takes place and provisioning template details are not opened.

Expected results:

The template box or details of provisioning template should be visible with read only permission.

Additional info:

The issue is reproducible on Satellite version 6.2.10
Comment 1 Marek Hulan 2017-08-01 04:46:36 EDT
to see a template box (edit form) user must have edit_provisioning_templates permission, could you verify that adding this permissions helps? I think it's consistent with all other pages, view permission only allows user to display the resources in index page.
Comment 2 Andrew Schofield 2017-08-01 07:59:47 EDT
(In reply to Marek Hulan from comment #1)
> to see a template box (edit form) user must have edit_provisioning_templates
> permission, could you verify that adding this permissions helps? I think
> it's consistent with all other pages, view permission only allows user to
> display the resources in index page.

I can confirm that. 

However, if I have view_provisioning_templates I *should* be able to view the templates. I can do this via hammer (and the API). The web UI should reflect these permissions.
Comment 4 Marek Hulan 2017-08-04 09:42:59 EDT
I agree but that would mean displaying a different, read-only, form. As I said, it works this way for every resource, good example is subnet. If we change it, we should change it everywhere. A simple solution might be just disabling the submit button. I'll change the BZ title to match it. As you can imagine this would be a big change so it can take a while.

Note You need to log in before you can comment on or make changes to this bug.