Project

Profile

Help

Story #8159

closed

as a user with 'auth.view_group' permission i can GET /pulp/api/v3/groups/

Added by dkliban@redhat.com almost 4 years ago. Updated almost 4 years ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
Category:
-
Sprint/Milestone:
Start date:
Due date:
% Done:

100%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Looks like pulpcore 3.10.0.dev is not providing a default access policy for /pulp/api/v3/groups and as a result non-admin users can't access that URL.


Related issues

Copied to Pulp - Story #8160: as a user with 'auth.change_group' permission i can POST /pulp/api/v3/groups/3/users/CLOSED - CURRENTRELEASEmdellweg

Actions
Actions #1

Updated by dkliban@redhat.com almost 4 years ago

  • Copied to Story #8160: as a user with 'auth.change_group' permission i can POST /pulp/api/v3/groups/3/users/ added
Actions #2

Updated by ipanova@redhat.com almost 4 years ago

  • Sprint/Milestone set to 3.10.0
Actions #3

Updated by mdellweg almost 4 years ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to mdellweg
Actions #4

Updated by pulpbot almost 4 years ago

  • Status changed from ASSIGNED to POST
Actions #5

Updated by mdellweg almost 4 years ago

  • Tracker changed from Issue to Story
  • Subject changed from user with 'auth.view_group' permission receives 403 on GET /pulp/api/v3/groups/ to as a user with 'auth.view_group' permission i can GET /pulp/api/v3/groups/
  • % Done set to 0
  • Severity deleted (2. Medium)
  • Triaged deleted (No)

Added by mdellweg almost 4 years ago

Revision 15611ae4 | View on GitHub

Add RBAC to the group endpoints

fixes #8159 https://pulp.plan.io/issues/8159

Actions #7

Updated by mdellweg almost 4 years ago

  • Status changed from POST to MODIFIED
  • % Done changed from 0 to 100
Actions #8

Updated by pulpbot almost 4 years ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE

Also available in: Atom PDF