Project

General

Profile

Actions
Copy link

Bug #8673

closed

[RBAC] A user should not be able to create a role that exceeds their own permissions.

Added by Thomas McKay over 9 years ago. Updated about 8 years ago.

Status:
Duplicate
Priority:
Normal
Assignee:
-
Category:
Users, Roles and Permissions
Target version:
-
Difficulty:
Triaged:
Bugzilla link:
1173352
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

If a user is given role creation permissions, the roles they create should not have permissions that exceed their own. (eg. If a user has view hosts, then edit hosts should not be available to assign.)

Actions
Copy link
 #1

Updated by Thomas McKay over 9 years ago

  • Bugzilla link set to 1173352
Actions
Copy link
 #2

Updated by The Foreman Bot over 9 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/2011 added
  • Pull request deleted ()
Actions
Copy link
 #3

Updated by Dominic Cleal over 9 years ago

  • Category changed from Authentication to Users, Roles and Permissions
Actions
Copy link
 #4

Updated by Dominic Cleal over 8 years ago

  • Status changed from Ready For Testing to New
  • Assignee deleted (Thomas McKay)
  • Pull request added
  • Pull request deleted (https://github.com/theforeman/foreman/pull/2011)
Actions
Copy link
 #5

Updated by Thomas McKay about 8 years ago

  • Status changed from New to Duplicate
Actions
Copy link

Also available in: Atom PDF