Project

General

Profile

Bug #24232

Non admin user is unable to see the audits for katello and taxable resources created by admin using Any Location context

Added by Marek Hulán 5 months ago. Updated 6 days ago.

Status:
Closed
Priority:
Normal
Category:
Audit Log
Target version:
-

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1600095

Description of problem:
unlike Admin, a regular user is not able to effectively use "Any Location" context on accessing Katello resources. So if Admin user creates a katello resource while having "Any Location" context set, audits for these actions and resources will not be visible to a regular user.

Version-Release number of selected component (if applicable):
6.4.0-11

How reproducible:
always

Steps to Reproduce:
1. create an organization (o1)
2. clone the "Auditor" role and assign the clone to the org (o1)
2. create a regular user (u1), belonging to org (o1), having "Org Admin" and the auditor clone roles assigned.
3. as an Admin user, set your location context to Any Location and organization context to o1
4. as an Admin user, create some katello resource (e.g. content view) OR architecture.
5. optional: as admin, check that the audits have been created
6. as u1, check the audits

Actual results:
u1 is unable to see any audits related to the resources created|manipulated in step #4 despite the fact that these belong to his organization.


Related issues

Related to Foreman - Bug #25039: No Audit entries found if you selected the Organization filter.Duplicate

Associated revisions

Revision c4693b37 (diff)
Added by Sebastian Gräßl 3 months ago

Fixes #24232 - Return taxed and untaxed audits in list (#6073)

Revision e40dee59 (diff)
Added by Sebastian Gräßl 20 days ago

Refs #24232 - Fix migration to ignore taxonomies for filters

Revision 25660e68 (diff)
Added by Sebastian Gräßl 6 days ago

Refs #24232 - Fix migration for upgrades

History

#1 Updated by Sebastian Gräßl 3 months ago

  • Assignee set to Sebastian Gräßl
  • Subject changed from Non admin user is unable to see the audits for katello and taxable resources created by admin using Any Location context to Non admin user is unable to see the audits for katello and taxable resources created by admin using Any Location context

#2 Updated by The Foreman Bot 3 months ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/6073 added

#3 Updated by Marek Hulán 3 months ago

  • Fixed in Releases 1.20.0 added

#4 Updated by Sebastian Gräßl 3 months ago

  • Status changed from Ready For Testing to Closed

#5 Updated by Chun-Liang Lin 2 months ago

  • Related to Bug #25039: No Audit entries found if you selected the Organization filter. added

#6 Updated by The Foreman Bot about 1 month ago

  • Pull request https://github.com/theforeman/foreman/pull/6251 added

#7 Updated by Lukas Zapletal 20 days ago

  • Fixed in Releases 1.21.0 added
  • Fixed in Releases deleted (1.20.0)

#8 Updated by The Foreman Bot 6 days ago

  • Pull request https://github.com/theforeman/foreman/pull/6319 added

Also available in: Atom PDF