Project

General

Profile

Actions
Copy link

Bug #25645

open

Related rules return an authorization error in UI for non-admin users

Added by Clark ANDRIANASOLO 9 days ago. Updated 8 days ago.

Status:
Pending release
Priority:
1 (highest)
Assignee:
François ARMAND
Category:
API
Target version:
8.1.8
Pull Request:
https://github.com/Normation/rudder/p...
Severity:
Minor - inconvenience | misleading | easy workaround
UX impact:
It bothers me each time
User visibility:
First impressions of Rudder
Effort required:
Very Small
Priority:
154
Name check:
To do
Fix check:
To do
Regression:
No

Description

With non-admin rights in Rudder i.e. user without the any_rights right, I cannot see related rules for a group :
it returns an authorization error : cannot GET /rulesinternal/relatedtree .

The right for internal rules endpoints should be mapped to the rule_read right

Related issues 1 (0 open1 closed)

Related to Rudder - User story #23968: Display a global view of group compliancesReleasedVincent MEMBRÉActions
Actions
Copy link
 #1

Updated by Clark ANDRIANASOLO 9 days ago

Actions
Copy link
 #2

Updated by François ARMAND 8 days ago · Edited

  • Priority changed from To review to 1 (highest)
  • Priority changed from 121 to 154

This important, because it blocks users from upgrading to Rudder 8.1

Actions
Copy link
 #3

Updated by Clark ANDRIANASOLO 8 days ago

  • Status changed from New to In progress
Actions
Copy link
 #4

Updated by Clark ANDRIANASOLO 8 days ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Clark ANDRIANASOLO to François ARMAND
  • Pull Request set to https://github.com/Normation/rudder/pull/5938
Actions
Copy link
 #5

Updated by Clark ANDRIANASOLO 8 days ago

  • Status changed from Pending technical review to Pending release
Actions
Copy link

Also available in: Atom PDF