Project

General

Profile

Actions

Bug #17596

closed

User with some to access technique editor api

Added by François ARMAND over 4 years ago. Updated over 4 years ago.

Status:
Released
Priority:
N/A
Category:
Web - Technique editor
Target version:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
Checked
Regression:

Description

An user with `read_only` role can't access technique editor plugin API (and so the plugin can't be used):

 <user name="qxj5868" password="LDAP" role="read_only" />
rudder-plugin-user-management | 6.1-1.8-nightly
An Error occured! Error while fetching techniques
Details:
Authorization error: User 'qxj5868' is not allowed to access GET secure/api/internal/techniques
Authorization error: User 'qxj5868' is not allowed to access GET secure/api/internal/methods
Authorization error: User 'qxj5868' is not allowed to access GET secure/api/internal/techniques/categories

Subtasks 1 (0 open1 closed)

Bug #17601: parent ticket breaks buildReleasedNicolas CHARLESActions
Actions #1

Updated by Vincent MEMBRÉ over 4 years ago

  • Status changed from New to In progress
Actions #2

Updated by Vincent MEMBRÉ over 4 years ago

  • Assignee changed from Vincent MEMBRÉ to François ARMAND
  • Pull Request set to https://github.com/Normation/rudder/pull/3035
Actions #3

Updated by Vincent MEMBRÉ over 4 years ago

  • Status changed from In progress to Pending release
Actions #4

Updated by Vincent MEMBRÉ over 4 years ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 6.1.0~rc3 which was released today.

Actions #5

Updated by Nicolas CHARLES over 4 years ago

  • Fix check changed from To do to Checked
Actions

Also available in: Atom PDF