Uploaded image for project: 'AppFormer'
  1. AppFormer
  2. AF-2556

Branch Permission RBAC is not correctly restricting access

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • None
    • None
    • Hide

      Semi-Working Reproduction Steps

      • Log in as a user who is mapped to the Business Central "Admin" Role
      • Select a Space and import a Git project that has multiple branches
      • At the Space Level, add a single user name to the Contributors settings and give them the Contributor role
      • At the Project Level, add the same user name to the Contributors settings and give them the Contributor role
      • Open the Settings page and edit Branch Management
      • Select a branch to limit access to.  Remove READ access from the Contributor row, which should remove all other access
      • Log out of the administrator account
      • Log in with an non-admin user who has access to this Space
      • Select the project, and verify that the branch is not shown in the branch list

      Non-Working Reproduction Steps

      • Log in as a user who is not mapped to the Business Central "Admin" Role
      • Select a Space and import a Git project that has multiple branches
      • Open the Settings page and edit Branch Management
      • Select a branch to limit access to.  Remove READ access from the Contributor row, which should remove all other access
      • Log out of the account
      • Log in with an non-admin user who has access to this Space
      • Select the project, and verify that all branches are incorrectly shown in the branch list
      Show
      Semi-Working Reproduction Steps Log in as a user who is mapped to the Business Central "Admin" Role Select a Space and import a Git project that has multiple branches At the Space Level, add a single user name to the Contributors settings and give them the Contributor role At the Project Level, add the same user name to the Contributors settings and give them the Contributor role Open the Settings page and edit Branch Management Select a branch to limit access to.  Remove READ access from the Contributor row, which should remove all other access Log out of the administrator account Log in with an non-admin user who has access to this Space Select the project, and verify that the branch is not shown in the branch list Non-Working Reproduction Steps Log in as a user who is not mapped to the Business Central "Admin" Role Select a Space and import a Git project that has multiple branches Open the Settings page and edit Branch Management Select a branch to limit access to.  Remove READ access from the Contributor row, which should remove all other access Log out of the account Log in with an non-admin user who has access to this Space Select the project, and verify that all branches are incorrectly shown in the branch list
    • NEW
    • NEW

      The branch RBAC permissions described in https://access.redhat.com/documentation/en-us/red_hat_process_automation_manager/7.7/html/configuring_business_central_settings_and_properties/role-based-access is not working as expected.

      As part of our business, we want to restrict read/write access to specified branches, preferably through the built-in Business Central Roles (but that can be a new feature request).

      We want the master branch to be protected so that nobody can write to it, and would prefer it not be readable either.

            r_anand Rishiraj Anand
            highmark-tleytrick Thomas Leytrick (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated: