Project

General

Profile

Actions
Copy link

Bug #22199

closed

Audit user and user group linking

Added by Marek Hulán over 6 years ago. Updated almost 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Lukas Zapletal
Category:
Audit Log
Target version:
1.18.0
Difficulty:
Triaged:
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman/pull/5187, https://github.com/theforeman/foreman/pull/5450
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

In order to audit all changes that might affect user permissions, it's not enough to just audit user roles, which is covered by #22051. We also need:

As a user with view_audits permission I want to see user audit record creates when a role has been assigned to a user.

As a user with view_audits permission I want to see user group audit record created when a role has been assigned to a user group.

As a user with view_audits permission I want to see user group audit record created when user group is assigned/disassigned another user group as parent/children. Note that this can have implications on what permissions a user in a given parent user group has grantes.

As a user with view_audits permission I want to see user audit record created when user is assigned or disassigned from a user group. This should include automatic external user group sync. Wile it does not necessarily is triggered by user, without this information, the critical part would be missing.

As a user with view_audits permission I want to see role audit record created when role permissions changes.

Related issues 4 (1 open3 closed)

Related to Foreman - Tracker #21879: [TRACKER] Audit every possible resourceNew12/06/2017

Actions
Related to Foreman - Bug #6235: User group membership changes not auditedResolved06/16/2014Actions
Related to Foreman - Bug #23195: associations are not audited on creationClosedTomer Brisker04/10/2018Actions
Related to Foreman - Bug #23965: audit: undefined method `each' for "":StringClosedTomer Brisker06/17/2018Actions
Actions
Copy link
 #1

Updated by Marek Hulán over 6 years ago

  • Related to Tracker #21879: [TRACKER] Audit every possible resource added
Actions
Copy link
 #2

Updated by Tomer Brisker over 6 years ago

  • Related to Bug #6235: User group membership changes not audited added
Actions
Copy link
 #3

Updated by The Foreman Bot over 6 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/5187 added
Actions
Copy link
 #4

Updated by Marek Hulán about 6 years ago

  • translation missing: en.field_release set to 330
Actions
Copy link
 #5

Updated by Swapnil Abnave about 6 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link
 #6

Updated by Tomer Brisker about 6 years ago

  • Related to Bug #23195: associations are not audited on creation added
Actions
Copy link
 #7

Updated by The Foreman Bot about 6 years ago

  • Assignee set to Lukas Zapletal
  • Pull request https://github.com/theforeman/foreman/pull/5450 added
Actions
Copy link
 #8

Updated by Tomer Brisker almost 6 years ago

  • Related to Bug #23965: audit: undefined method `each' for "":String added
Actions
Copy link

Also available in: Atom PDF