edit_hostgroups privilege not respecting filters placed on user account
Placing a filter on a user account that "Host Groups must be" and selecting only 1 group -- then placing the user in a role that only has edit_hostgroups and view_hostgroups privileges results in the user being able to view and edit all host groups.
Was unsure if this was a bug or should be a feature request until I saw that a user in this setup (with view and edit hosts) can only place a host in a host group that is within the filter. Drop down list for selecting the host group only contains groups selected with the above filter. But when in the Host Groups section, same user can see and edit all host groups.
Seen in version 0.4.2
#3 Updated by Greg Sutcliffe over 7 years ago
Partially confirmed on 0.4.2. The User can indeed see all Hostgroups, and can view the Edit page. However, attempts to Submit the page seem to fail.
In testing, I found that under this set up, the User couldn't actually Submit changes for Hostgroups that they are allowed to edit.
Re-testing on the develop branch, I can confirm this behaviour. Since it's permissions-based, I'll fix it and merge into my permissions pull-request, so don't merge that just yet :)