Details
-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
2.14.0 GA
-
False
-
None
-
False
-
Not Started
-
Not Started
-
Not Started
-
Not Started
-
Not Started
-
Not Started
Description
Current behavior
A member user of the 3scale admin portal that has the following rights:
- Create, red, update and delete
- developer accounts
- applications of selected API products ----- ProductA (only)
Receives notifications when:
- An account is created with a service subscription of any other product, for example ProductB.
- An account is created without any service subscription.
- An account is deleted regardless of any service subscription.
- A developer user sends a message regardless the service subscriptions the account has.
According to the code this behavior is expected. The Accounts permission is a top level item and does not get scoped by Products or Backends (also the 3cale admin portal UI doesn't show any link to products when setting the account permissions to the member user, see screenshot). If members have the above permissions enabled then it is expected they receive all notifications related to accounts regardless of the Products subscribed to.
Expected behavior
Some customers sees this as unexpected and it creates an high amount of undesired emails for member users of their admin portal. This makes very difficult for them to triage the useful email notifications.
Additional note:
An account can have 0 subscriptions or some other subscriptions but in the future it can be subscribed to ProductA. If the member user only have rights on the ProductA, is it that important that the user didn't receive in the past the notification of the account creation? If in the future the account is subscribed to the ProductA and an application is created, the member user will receive notifications on:
- Account has subscribed to your service ProductA
- ApplicationX created on ProductA
Attachments
Issue Links
- relates to
-
THREESCALE-10794 Decouple accounts and users from applications rights
-
- New
-
-
-
- To Develop
-