Bug 1553392 - EvmRole-auditor can perform actions on VM
Summary: EvmRole-auditor can perform actions on VM
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat CloudForms Management Engine
Classification: Red Hat
Component: UI - OPS
Version: 5.8.0
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: GA
: 5.9.2
Assignee: Martin Povolny
QA Contact: Landon LaSmith
URL:
Whiteboard:
Depends On: 1479583
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-03-08 19:08 UTC by Satoe Imaishi
Modified: 2022-07-09 09:32 UTC (History)
11 users (show)

Fixed In Version: 5.9.2.0
Doc Type: If docs needed, set a value
Doc Text:
Clone Of: 1479583
Environment:
Last Closed: 2018-05-07 20:45:31 UTC
Category: ---
Cloudforms Team: CFME Core
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2018:1328 0 None None None 2018-05-07 20:45:59 UTC

Comment 2 CFME Bot 2018-03-08 19:46:06 UTC 
New commit detected on ManageIQ/manageiq/gaprindashvili:

https://github.com/ManageIQ/manageiq/commit/555435b44d629d182c554f3303ede83bad525fac
commit 555435b44d629d182c554f3303ede83bad525fac
Author:     Harpreet Kataria <hkataria>
AuthorDate: Fri Jan 26 09:17:45 2018 -0500
Commit:     Harpreet Kataria <hkataria>
CommitDate: Fri Jan 26 09:17:45 2018 -0500

    Merge pull request #16394 from martinpovolny/role_fix

    Fix the pre-defined Auditor role's permissions.
    (cherry picked from commit fcc654f3a77d9e843b200d38ff07922333c540c2)

    Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1553392

 db/fixtures/miq_user_roles.yml | 36 +-
 1 file changed, 22 insertions(+), 14 deletions(-)
Comment 3 Landon LaSmith 2018-04-02 16:59:39 UTC 
Verified in 5.9.2. A user with EVMRole-auditor permissions no longer has access to VM power controls
Comment 6 errata-xmlrpc 2018-05-07 20:45:31 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2018:1328
Note You need to log in before you can comment on or make changes to this bug.