Description of problem:

If user does not have 'Configure-read' permissions for resources, the 'Resource Configuration' menu item should be disabled in the right click menu for the resource. At present it is enabled. Clicking on the 'Resource Configuration' menu option displays below error in the server log:

ERROR [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost].[/coregui]] Exception while dispatching incoming RPC call
com.google.gwt.user.server.rpc.UnexpectedException: Service method 'public abstract org.rhq.core.domain.configuration.Configuration org.rhq.enterprise.gui.coregui.client.gwt.ConfigurationGWTService.getResourceConfiguration(int)' threw an unexpected exception: java.lang.RuntimeException: org.rhq.enterprise.server.authz.PermissionException:User [testuser] does not have permission to view resource configuration for [Resource[id=10002, type=RHQ Agent, key=RHQ Agent, name=RHQ Agent, parent=sunillaptop, version=4.0.0-SNAPSHOT]]

Version-Release number of selected component (if applicable):

rhq build#413


How reproducible:

Always

Steps to Reproduce:

1.Login to Jon.
2.Create a group of resources like rhq agent etc.
3.Create a role having only 'Configure-read' permissions and assign the resource group created.
4.Create a new user and assign the role created above.
5.Login to Jon as newly created user.
6.Click on 'Inventory' menu item.
7.Click on 'Resource Inventory->Servers'.
8.Click on the resource (Ex: Rhq Agent)
9.Right click on the resource node in the resource tree.(Ex: Rhq Agent)
10.Verify 'Resource Configuration' menu item in the right click menu
  
Actual results:

The 'Resource Configuration' right click menu option is enabled for a user without configure_read permission.

Expected results:

If user does not have 'Configure-read' permissions for resources, the 'Resource Configuration' menu item should be disabled in the right click menu for the resource.

Additional info: