Bug #20483

Some core permissions are missing from Manager and Organization admin roles

Added by Marek Hulán 22 days ago. Updated 16 days ago.

Assigned To:Marek Hulán
Target version:-
Difficulty: Bugzilla link:1477598
Found in release: Pull request:https://github.com/theforeman/foreman/pull/4710
Story points-
Velocity based estimate-
Release1.15.3Release relationshipAuto


Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1477598
Description of problem:

In clean installation, Manager and Organization admin roles do not contain all permissions, e.g.

it contains on view_compute_profiles but not edit/destroy/create permission for this resource

The cause is that hardcoded list in db/seeds.d/02-roles_list.rb is not complete.

Version-Release number of selected component (if applicable):

Satellite 6.3 snap 9 / Foreman nightly (1.16-develop)

How reproducible:


Steps to Reproduce:
1. install Satellite / Foreman
2. navigate to Manager role, see filters
3. try to find edit_compute_profiles

Actual results:

no such permission can be found

Expected results:

every permission should be included in Manager role, Organization admin should contain similar set just without organization management
Additional info:

Associated revisions

Revision 47f0bc24
Added by Marek Hulán 16 days ago

Fixes #20483 - seed all permission for core roles


#1 Updated by The Foreman Bot 22 days ago

  • Status changed from New to Ready For Testing
  • Assigned To set to Marek Hulán
  • Pull request https://github.com/theforeman/foreman/pull/4710 added

#2 Updated by Marek Hulán 22 days ago

  • Release set to 1.15.3

I think this is a good candidate for 1.15.3 since we started to lock core roles. There's no way for user to add missing permission to Manager role. Also it seems pretty safe change. Please reset the release field if you disagree.

#3 Updated by Anonymous 16 days ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100

Also available in: Atom PDF