Bug #30112
closed
Content Hosts has Access to Content View from Different Organization
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1815608
Description of problem:
From the Web UI, I moved a content host from Org A, to Org B via, Hosts => All Hosts, select the host, and select the Assign Organization option. I had to select "Fix Organization on Mismatch" option in order to move the content host to Org B, because Org B did not have that CV. Once the content host was moved, the content host still had access to the content view.
Version-Release number of selected component (if applicable):
Satellite 6.6
How reproducible:
always
Steps to Reproduce:
1. Create 2 Organizations
2. Create a CV on only one organization, and register a content host to that Org with that CV
3. Move the Content Host to the other Org (the one without the CV)
Actual results:
Content Host still has access to the repositories from the old Organization, and can successfully download packages.
Expected results:
Content host should not have access to the content, as its new org does not have that CV.
Additional info:
Updated by Ian Ballou over 4 years ago
The solution for now will be to block the call to change org and give the user a warning to un-register their host(s). Might be able to accomplish this via overrides of the host model.
Updated by The Foreman Bot over 4 years ago
- Status changed from New to Ready For Testing
- Assignee set to Ian Ballou
- Pull request https://github.com/Katello/katello/pull/8777 added
Updated by Samir Jha over 4 years ago
- Target version set to Katello 3.16.0
- Triaged changed from No to Yes
Updated by The Foreman Bot over 4 years ago
- Fixed in Releases Katello 4.0.0 added
Updated by Anonymous over 4 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset katello|70ebdbbf7a9394b692d19e626804f3c6684e9902.