Description of problem: If a role has only 'Manage bundles' permission, user assigned to this role is not able to create/deploy bundle. The wizard displays below error: Failed to upload bundle distribution file org.rhq.enterprise.server.authz.PermissionException: Subject [testuser] is not authorized for [MANAGE_INVENTORY]: invocation: method=public org.rhq.core.domain.content.Repo org.rhq.enterprise.server.content.RepoManagerBean.createRepo(org.rhq.core.domain.auth.Subject,org.rhq.core.domain.content.Repo) throws org.rhq.enterprise.server.content.RepoException,context-data={} Please refer the attached screenshot. Version-Release number of selected component (if applicable): jon-2.4.0.GA_QA build#61 How reproducible: Always Steps to Reproduce: 1. Go to Administration->Security->Roles 2. Click on button 'New' to create a new role. 3. Enter a role name and check the check box 'Manage bundles' in 'Global Permissions' section. 4. Do not check any other checkbox. 5. Click on OK button. 6. Create a new user(testuser) and add user to the role created. 7. Login to jon with the user(testuser) 8. Navigate to Administrator->Content->Bundles. 9. Click on 'New' button to create a bundle. 10. Select 'Upload' radio button. 11. Browse and select a bundle file. 12. Click on 'Next' button. Actual results: If a role has only 'Manage bundles' permission, user assigned to this role is not able to create/deploy bundle. Expected results: User assigned to a role having 'Manage bundles' permissions should be able to create/deploy a bundle. Additional info:
Created attachment 431392 [details] Screenshot
commit 64cce78d37296a1d0c5be804687aef4e0394f86b Author: Joseph Marques <joseph> Date: Tue Jul 13 16:06:21 2010 -0400 BZ-613918: allow bundle managers without MANAGE_INVENTORY perm to create/delete bundles
additional fix commit: f1b2a3b10a905df46794b1defdd273b282a854e7 A few more scenarios to support manage_bundle without manage_inventory.
Passed tests with additional fixes. create/delete/deploy and various gui views working.
Mass-closure of verified bugs against JON.