Project

General

Profile

Actions

Bug #25645

closed

Related rules return an authorization error in UI for non-admin users

Added by Clark ANDRIANASOLO 2 months ago. Updated about 1 month ago.

Status:
Released
Priority:
1 (highest)
Category:
API
Target version:
Severity:
Minor - inconvenience | misleading | easy workaround
UX impact:
It bothers me each time
User visibility:
First impressions of Rudder
Effort required:
Very Small
Priority:
154
Name check:
To do
Fix check:
Checked
Regression:
No

Description

With non-admin rights in Rudder i.e. user without the any_rights right, I cannot see related rules for a group :
it returns an authorization error : cannot GET /rulesinternal/relatedtree .

The right for internal rules endpoints should be mapped to the rule_read right


Related issues 1 (0 open1 closed)

Related to Rudder - User story #23968: Display a global view of group compliancesReleasedVincent MEMBRÉActions
Actions #1

Updated by Clark ANDRIANASOLO 2 months ago

Actions #2

Updated by François ARMAND 2 months ago · Edited

  • Priority changed from To review to 1 (highest)
  • Priority changed from 121 to 154

This important, because it blocks users from upgrading to Rudder 8.1

Actions #3

Updated by Clark ANDRIANASOLO 2 months ago

  • Status changed from New to In progress
Actions #4

Updated by Clark ANDRIANASOLO 2 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Clark ANDRIANASOLO to François ARMAND
  • Pull Request set to https://github.com/Normation/rudder/pull/5938
Actions #5

Updated by Clark ANDRIANASOLO 2 months ago

  • Status changed from Pending technical review to Pending release
Actions #6

Updated by Raphael GAUTHIER about 1 month ago

  • Fix check changed from To do to Checked
Actions #7

Updated by Vincent MEMBRÉ about 1 month ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 8.1.8 and 8.2.1 which were released today.

Actions

Also available in: Atom PDF