Red Hat Bugzilla – Bug 1479583
EvmRole-auditor can perform actions on VM
Last modified: 2017-11-04 10:32:29 EDT
Description of problem:
According to Redhat doc, role EvmRole-auditor should have no permission on perform any actions on VMs. However, users having that role are able to poweron/poweroff VMs
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Create a user and assign role EvmRole-auditor
2.Login with the user
3.Go to any VM and click on the Power button, all actions are visible and can be performed.
User is able to poweron/poweroff VMs
User shouldn't even be able to see the power button or actions should be disabled
EvmRole-security has the same problem.
> According to Redhat doc
Can you give me a link to that doc, please?
As a workaround you can copy the pre-defined Auditor role to a new role, fix the permissions under the new role and assign the new role in place of the pre-defined role.
I am working on a fix here: https://github.com/ManageIQ/manageiq/pull/16394
Thank you very much for working on the fix.
CloudForms is the best in its kind and I am very happy to see it's getting better and better because of you guys. Awesome!