Created attachment 564602 [details] Destroy Description of problem: Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1.Create a user with only "Zone Global user" role 2. Login as "zone global user" 3. Go to monitor 4. Enable the tabled view 5. Select a Cloud resource zone that does not have any instance created 6. Click "Destroy" Actual results: Even though the cloud resource zone does not have any instance, it displays this error message "Cloud Resource Zone wwww was not deleted. There are instances associated with it" on the UI(PFA: Destroy.png) Expected results: I feel this user is not allowed to remove cloud resource zone because the user doesn't have any "Delete" button in the detailed view of cloud resource zone(Detailed view of CRZ.png) Additional info: rpm -qa | grep aeolus aeolus-conductor-0.8.0-28.el6.noarch aeolus-conductor-daemons-0.8.0-28.el6.noarch aeolus-conductor-doc-0.8.0-28.el6.noarch rubygem-aeolus-image-0.3.0-7.el6.noarch aeolus-all-0.8.0-28.el6.noarch rubygem-aeolus-cli-0.3.0-8.el6.noarch aeolus-configure-2.5.0-14.el6.noarch
Created attachment 564603 [details] Detailed view of CRZ Added detailed view of Cloud resource zone
Created attachment 564605 [details] Rails log Added Rails log file
The UI here (in terms of what is displayed) is consistent with other tabular views -- the action links at the top aren't hidden, but we validate actions on a per-resource basis. For 1.0 we're not disabling 'delete', since that requires a js-based solution that takes into account everything selected. However, the validation bug reported (wrong message given) is a valid bug that we'll need to fix here.
Patch created: https://fedorahosted.org/pipermail/aeolus-devel/2012-March/009367.html It doesn't remove the "Destroy" button, but it does clarify the actual error.
Patch pushed to master: commit 45425dad5ccc70b8639c9b30ef0c3bc611272316 BZ 795666 show proper error if user does not have permission to destroy a pool
You have insufficient privileges to perform the selected action is displayed when trying to destroy a zone if user does not have permission. see attached screenshot. verified: rpm -qa | grep aeolus rubygem-aeolus-cli-0.3.0-13.el6.noarch aeolus-conductor-0.8.0-41.el6.noarch aeolus-configure-2.5.0-18.el6.noarch aeolus-conductor-doc-0.8.0-41.el6.noarch aeolus-all-0.8.0-41.el6.noarch aeolus-conductor-daemons-0.8.0-41.el6.noarch rubygem-aeolus-image-0.3.0-12.el6.noarch
Created attachment 569554 [details] permission
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHEA-2012-0583.html