Project

General

Profile

Actions
Copy link

Bug #14505

closed

Foreman smart proxy puppetca certificates not shown

Added by Robert Heinzmann almost 10 years ago. Updated over 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Tomer Brisker
Category:
Users, Roles and Permissions
Target version:
1.11.1
Difficulty:
Triaged:
Bugzilla link:
1324516
Pull request:
https://github.com/theforeman/foreman/pull/3397
Fixed in Releases:
Found in Releases:
1.11.0
Red Hat JIRA:

Description

I have a user with the following permissions:

shell# hammer --output json user info --login XXXX
{
  "Id": XXXX,
  "Login": "XXXXX",
  "Name": "XXXXXXXXXXXXXXXX",
  "Email": "XXXXXXXXXXXXXXXXX",
  "Admin": false,
  "Authorized by": {
    "id": 1,
    "type": "AuthSourceInternal",
    "name": "Internal" 
  },
  "Locale": "XX",
  "Timezone": "XX",
  "Last login": "XXXXXXXXXXXXX",
  "Default organization": null,
  "Default location": null,
  "Roles": [
    {
      "name": "AccountAdministrator",
      "id": 9
    },
    {
      "name": "Anonymous",
      "id": 8
    }
  ],
  "User groups": [

  ],
  "Created at": "XXXX",
  "Updated at": "XXXX" 
}

shell# hammer --output json filter list --search "--role=AccountAdministrator" 

  {
    "Id": XXXX,
    "Resource type": "SmartProxy",
    "Search": "none",
    "Unlimited?": true,
    "Role": {
      "name": "AccountAdministrator",
      "id": XXXX
    },
    "Permissions": [
      "view_smart_proxies",
      "view_smart_proxies_autosign",
      "view_smart_proxies_puppetca",
      "edit_smart_proxies_puppetca",
      "destroy_smart_proxies_puppetca" 
    ]
  },

However on centos7 + foreman-1.11.0-1.el7.noarch I can not see the certificates (See Screeshot)

If I grant "Manager" permissions to the user, it still does not work.

Files

01 - Puppet CA with Foreman - 10.png View 01 - Puppet CA with Foreman - 10.png 14.3 KB Robert Heinzmann, 04/06/2016 08:18 AM
01 - Puppet CA with Foreman - 20.png View 01 - Puppet CA with Foreman - 20.png 12.6 KB Robert Heinzmann, 04/06/2016 08:18 AM
01 - Puppet CA with Foreman - 30.png View 01 - Puppet CA with Foreman - 30.png 17.1 KB Robert Heinzmann, 04/06/2016 08:18 AM
01 - Puppet CA with Foreman - 40.png View 01 - Puppet CA with Foreman - 40.png 17.1 KB Robert Heinzmann, 04/06/2016 08:18 AM
Actions
Copy link
 #1

Updated by Dominic Cleal almost 10 years ago

  • Description updated (diff)
  • Category set to PuppetCA
  • Translation missing: en.field_release set to 141

Authorisation related issue, as admin privileges work.

Actions
Copy link
 #2

Updated by Robert Heinzmann almost 10 years ago

One note: If I set user "admin", everything works as expected.

Actions
Copy link
 #3

Updated by Tomer Brisker almost 10 years ago

  • Category changed from PuppetCA to Users, Roles and Permissions
  • Status changed from New to Assigned
  • Assignee set to Tomer Brisker

A quick investigation leads me to believe many of the permissions for smart proxies are broken. Changing to authorization.

Actions
Copy link
 #4

Updated by The Foreman Bot almost 10 years ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/3397 added
Actions
Copy link
 #5

Updated by Tomer Brisker almost 10 years ago

  • Bugzilla link set to 1324516
Actions
Copy link
 #6

Updated by Anonymous almost 10 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link
 #7

Updated by Robert Heinzmann almost 10 years ago

I tested the patch on our installation, and now everything works ok. I can see the Tabs.

Actions
Copy link

Also available in: Atom PDF