On login with minimal permissions, user is always taken to host page
Installed version: debian squeeze package 0.4.2-1
Steps to reproduce:
1. Create a role named 'guest'
2. Uncheck all permissions (uncheck/check all buttons do not work though) but leave only report ACLs enabled
3. Create a user named 'guest' and assign to 'guest' role
4. Login as guest
This user still has access to 'hosts' and 'more' (although no submenus are available in the 'more' section).
There seems to be a strange relationship between the Anonymous role and other roles though. Disabling the 'hosts' related ACLs in the Anonymous role results in a permissions related error. It appears that the login redirection takes the logged in user straight to the 'hosts' area of the site.
What I'd really love is to be able to get the Anonymous role working so that only reports are available. This way, logins wouldn't be required at all just to view this subset of functionality.
#1 Updated by Dominic Cleal about 5 years ago
- Description updated (diff)
I think generally the login page will try and return the user to the original URL they requested, so if they hit / then it should take them to the dashboard (giving all users permission to view_dashboard seems a good idea). If there's no original URL then it defaults to the host list, which they might not have permission to access.
This needs to be more flexible based on the user's assigned permissions.
#2 Updated by Dominic Cleal almost 5 years ago
- Subject changed from Unable to strip foreman down to nothing but a report viewer to On login with minimal permissions, user is always taken to host page
I think the menu issues have been resolved in recent versions, but the issue with minimum permissions on login being given a denied message (particularly when missing the dashboard permission) is still a problem.