Red Hat Bugzilla – Bug 203933
Config Admins are allowed to see local config channels for systems they don't administer.
Last modified: 2007-04-18 13:48:09 EDT
In rhn_config_channel.get_user_chan_access, a config admin is given access to
any row in rhnConfigChannel that is part of his/her org.
Note: bug #201181 touches this same stored procedure.
Expected: Config Admins have access to all global config channels
(rhnConfigChannelType label = 'normal'), but only have access to local config
channels for which they have permissions to the associated server.
Now with whiteners, brighteners, *and* more ON_DEV-ness!
ON_QA, here we come!
Cannot verify this, as the Local config channel list is missing.
See comments in BZ 147423 - local-channel-list has been removed. This can be
tested by checking to see if cfg-admins can get access to -systems- that they
aren't supposed to be able to acess
verified. rhn500h. qapush#5
verified in stage.
Closed in the rhn500h Release.