Bug 910368 - Non admin user have access to /hosts url
Summary: Non admin user have access to /hosts url
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: ovirt-engine
Version: 3.1.2
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
: 3.1.3
Assignee: Yair Zaslavsky
QA Contact: Ondra Machacek
URL:
Whiteboard: infra
Depends On: 909692
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-02-12 13:39 UTC by Idith Tal-Kohen
Modified: 2016-02-10 19:32 UTC (History)
14 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Previously, non-admin users were able to access the /hosts URL despite not having appropriate permissions. This has been fixed so that a 403 Forbidden error will appear when attempting to access the /hosts url without admin permissions.
Clone Of: 909692
Environment:
Last Closed: 2013-03-12 14:29:59 UTC
oVirt Team: Infra
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2013:0557 0 normal SHIPPED_LIVE rhevm 3.1.3 bug fix update 2013-03-12 18:26:15 UTC
oVirt gerrit 11933 0 None None None Never

Comment 7 errata-xmlrpc 2013-03-12 14:29:59 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2013-0557.html
Note You need to log in before you can comment on or make changes to this bug.