Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1852778

Summary: User with SuperUser on a DC can't add cluster in that DC
Product: [oVirt] ovirt-engine Reporter: Petr Matyáš <pmatyas>
Component: BLL.InfraAssignee: Martin Perina <mperina>
Status: CLOSED DUPLICATE QA Contact: Lukas Svaty <lsvaty>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 4.4.1.5CC: bugs, dholler, emesika
Target Milestone: ---Keywords: Automation, AutomationBlocker
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-07-01 10:16:07 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Infra RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Petr Matyáš 2020-07-01 09:52:38 UTC 
Description of problem:
I have a user with SuperUser role on a DC, however when adding new cluster it fails on User is not authorized to perform this action.
From log I see that it's missing CONFIGURE_MAC_POOL, although I can see that in roles permits so it should be OK.

Version-Release number of selected component (if applicable):
Version 4.4.1.5-0.17.el8ev

How reproducible:
always

Steps to Reproduce:
1. add SuperUser role for a user to a DC
2. create cluster with RESTAPI by specified user in specified DC
3.

Actual results:
not authorized

Expected results:
should be possible

Additional info:
2020-06-30 21:58:36,853+03 INFO  [org.ovirt.engine.core.bll.AddClusterCommand] (default task-28) [clusters_create_ffeeb24c-f4e5-48bd] No permission found for user '1aba14da-c78c-4dad-8f71-8b253e538161' or one of the groups he is member of, when running action 'AddCluster', Required permissions are: Action type: 'ADMIN' Action group: 'CONFIGURE_MAC_POOL' Object type: 'MAC Pool'  Object ID: '58ca604b-017d-0374-0220-00000000014e'.
2020-06-30 21:58:36,853+03 WARN  [org.ovirt.engine.core.bll.AddClusterCommand] (default task-28) [clusters_create_ffeeb24c-f4e5-48bd] Validation of action 'AddCluster' failed for user auto_user_dc@internal-authz. Reasons: VAR__TYPE__CLUSTER,VAR__ACTION__CREATE,USER_NOT_AUTHORIZED_TO_PERFORM_ACTION
2020-06-30 21:58:36,853+03 ERROR [org.ovirt.engine.api.restapi.resource.AbstractBackendResource] (default task-28) [] Operation Failed: [User is not authorized to perform this action.]
Comment 1 Martin Perina 2020-07-01 10:16:07 UTC 
Seems to me like a duplicate of BZ1808320, so closing

*** This bug has been marked as a duplicate of bug 1808320 ***