Plugins » Katello

Currently, permissions in Katello (view_lifecycle_environments,etc...) are not being properly used when inherited from a user group. Katello permissions work well when assigned directly to an user.

Steps I followed (on nightly):
1) As admin, create a user without any roles, or taxonomies.
2) Log in as said user. It doesn't show anything that requires a permission as expected.
3) As admin create a role, with three filters to view lifecycle environments, activation keys, and compute resources
4) As admin, create an user group, and add the previously created user and role to it.
5) Refresh the page with the non-admin user. You should see the Content menu with Lifecycle Environments, Activation Keys and Compute Resources, as expected.
6) Click on any of Lifecycle Environments and Activation Keys. You will get a 403 and a Permission denied error.
7) Click on Infrastructure > Compute Resources. It will show the list of compute resources

Expected results:
'Katello' roles inherited from user groups should work on users.

Actual results:
"Permission Denied" message seen when providing roles to user_groups.