Description of problem: According to Redhat doc, role EvmRole-auditor should have no permission on perform any actions on VMs. However, users having that role are able to poweron/poweroff VMs Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. Create a user and assign role EvmRole-auditor 2.Login with the user 3.Go to any VM and click on the Power button, all actions are visible and can be performed. Actual results: User is able to poweron/poweroff VMs Expected results: User shouldn't even be able to see the power button or actions should be disabled Additional info: EvmRole-security has the same problem.
> According to Redhat doc Can you give me a link to that doc, please?
https://access.redhat.com/documentation/en-us/red_hat_cloudforms/4.5/html/general_configuration/configuration#roles
As a workaround you can copy the pre-defined Auditor role to a new role, fix the permissions under the new role and assign the new role in place of the pre-defined role. I am working on a fix here: https://github.com/ManageIQ/manageiq/pull/16394
Hi Martin, Thank you very much for working on the fix. CloudForms is the best in its kind and I am very happy to see it's getting better and better because of you guys. Awesome! Regards, George Field
No, just need's POSTing, sorry.
VERIFIED in 5.10.0.8. While logged in as a user with EvmRole-auditor permissions, i was unable to power on/off a vm