Project

General

Profile

Bug #13164

view_params is missing

Added by Ori Rabin over 4 years ago. Updated about 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Users, Roles and Permissions
Target version:
Difficulty:
Triaged:
Bugzilla link:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1296662
Description of problem:
The view_params permission in the Parameter resource is missing. This prevents us from allowing users to be able to view parameters.

Version-Release number of selected component (if applicable):
6.1.5

How reproducible:
Repeatable:

Actual results:

  1. hammer filter available-permissions --resource-type Parameter
    ---|----------------|----------
    ID | NAME | RESOURCE
    ---|----------------|----------
    67 | create_params | Parameter
    68 | edit_params | Parameter
    69 | destroy_params | Parameter
    ---|----------------|----------

Expected results:

I'd expect to be assign the view_params permission to users (as edit_params is useless without this!).


Related issues

Related to Foreman - Refactor #15496: Simplify all parameter kinds permissionsNew2016-06-22
Related to Foreman - Bug #15599: Unattended controller can't access host parameters in kickstart templatesClosed2016-07-07
Related to Foreman Remote Execution - Bug #15605: Tests failing with latest ForemanClosed2016-07-07
Related to Foreman - Bug #15629: Validation errors for Domain and OS Parameters tab not showingClosed2016-07-08
Related to Foreman - Bug #17395: @host.params are not interpreted when was used in ptable kickstart template.Closed2016-11-18

Associated revisions

Revision c7f55be1 (diff)
Added by Ori Rabin about 4 years ago

Fixes #13164 - Add view_params permission

A new view_params permission was added for parameters inheriting from
Parameter object. The only exception is global parameters, which are
already handled by filter for CommonParameter resource.

This new permissions is also automatically added to viewer and site
manager roles, as well as any other roles with any of the existing
Parameters permissions.

With the patch it's now also possible to use granular filters for all
parameters that Foreman supports.

Contributions from:

Revision 94265cf7 (diff)
Added by Ori Rabin about 4 years ago

Refs #13164 - Consistent parameters authorization in api

History

#1 Updated by The Foreman Bot over 4 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/3060 added

#2 Updated by Dominic Cleal over 4 years ago

  • Category set to Users, Roles and Permissions
  • Status changed from Ready For Testing to Assigned
  • Priority changed from High to Normal

#3 Updated by Dominic Cleal over 4 years ago

Using Foreman 1.10.2-el7, I noticed that non-admins are unable to access parameters within the "Edit Locations" section when adding all parameter permissions from within the UI.
Reviewing the filter permissions for the Parameters category, it appears the "view_params" permission does not show up which is needed for this feature to be shown to non-admins.

I've added the view_params permission into the permissions table then added the view_params permission to the role and everything worked as expected :)
insert into permissions (name,resource_type,created_at,updated_at) values ('view_params','Parameter',NOW(),NOW());

I'm unsure if this permission has been deprecated and needs to be altered within app/views/taxonomies/_form.html.erb or if we need to alter the seeds.d/03-permissions.rb to include the perm.

from foreman-dev. The use of view_params should probably be removed from this one view or implemented everywhere.

#4 Updated by The Foreman Bot over 4 years ago

  • Status changed from Assigned to Ready For Testing

#5 Updated by The Foreman Bot about 4 years ago

  • Pull request https://github.com/theforeman/foreman/pull/3592 added

#6 Updated by Marek Hulán about 4 years ago

  • Related to Refactor #15496: Simplify all parameter kinds permissions added

#7 Updated by Dominic Cleal about 4 years ago

  • Legacy Backlogs Release (now unused) set to 160

#8 Updated by Ori Rabin about 4 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100

#9 Updated by Tomer Brisker about 4 years ago

  • Pull request deleted (https://github.com/theforeman/foreman/pull/3060)

#10 Updated by The Foreman Bot about 4 years ago

  • Pull request https://github.com/theforeman/foreman/pull/3624 added

#11 Updated by Dominic Cleal about 4 years ago

  • Related to Bug #15599: Unattended controller can't access host parameters in kickstart templates added

#12 Updated by Ivan Necas about 4 years ago

  • Related to Bug #15605: Tests failing with latest Foreman added

#13 Updated by Ivan Necas about 4 years ago

  • Related to Bug #15629: Validation errors for Domain and OS Parameters tab not showing added

#14 Updated by Dominic Cleal over 3 years ago

  • Related to Bug #17395: @host.params are not interpreted when was used in ptable kickstart template. added

Also available in: Atom PDF