Uploaded image for project: 'Hybrid Cloud Console'
  1. Hybrid Cloud Console
  2. RHCLOUD-28601

If I remove inventory:group:read and click add permission I can add inventory:group:read with no group/no resource definition

XMLWordPrintable

    • False
    • Hide

      None

      Show
      None
    • False
    • Unset
    • No
    • Plat-Ex UI Tech debt q3-2023

      If I have a role with inventory:group:read and I remove that permission, click "Add permission" I can add a inventory:group:read to that role without assigning a group to it.

      This will allow permission to have 0 resource definitions

      Non org admin user with that role can access a list of all groups in the group filter in apps when user has inventory:host:read of only "ungrouped systems"

      Affects all apps with group filter

        1. Screenshot from 2023-10-03 10-57-36.png
          Screenshot from 2023-10-03 10-57-36.png
          34 kB
        2. Screenshot from 2023-10-03 10-52-42.png
          Screenshot from 2023-10-03 10-52-42.png
          133 kB

              fhlavac Filip Hlavac
              rh-ee-mclinton Max Clinton
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: