Bug #10634
closed
API user can't edit templates without admin rights
Description
Hello
I have a service-account user (jenkins) assigned an 'Edit Templates' role.
The role has the following permissions. view_templates, create_templates, edit_templates, deploy_templates, lock_templates.
Until a recent upgrade to foreman 1.8 (from 1.6), the user (via a jenkins job and some ruby) was successfully using the API to upload templates from a git repository.
This now no longer works unless the user is also made an 'admin'. Without this setting, the API returns a 404 error.
Unlocking template: 49{:config_template=>{:locked=>false}}
rake aborted!
RestClient::ResourceNotFound: 404 Resource Not Found
The problem still exists in 1.8.1 and was not fixed by http://projects.theforeman.org/issues/9687
Many Thanks,
Alex
Updated by Dominic Cleal almost 9 years ago
- Related to Bug #9687: Provisioning Template Roles: view_template, edit_template doesn't render on 1.7.3 for non-admin added
Updated by Dominic Cleal almost 9 years ago
- Category set to API
I suspect that "controller_permission" needs to be in the API controllers and not just the UI controllers. #9687 fixed the API base controller to obey it, but it isn't present.
Updated by Dominic Cleal about 8 years ago
- Status changed from New to Resolved