Actions
Bug #29348
openNon-admin user can’t do puppetrun request via API, but can via GUI.
Status:
New
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Description
*Problem:
*Non-admin user can’t do puppetrun request via API, but can via GUI.
User have puppetrun host filter in role.
Expected outcome:
User with puppetrun capabilities must have ability to do puppetrun via API and GUI
*Foreman and Proxy versions:
*foreman-1.24.2-1.el7.noarch
*Foreman and Proxy plugin versions:
*foreman-proxy-1.24.2-1.el7.noarch
*Distribution and version:
*CentOS7
Release 7.7.1908
# curl -X PUT -u 'user:pass' https://foreman.example.com/api/hosts/myhost/puppetrun { "error": {"message":"Access denied","details":"Missing one of the required permissions: ","missing_permissions":[]} }
2020-03-13T15:58:26 [I|app|81978b3a] Started PUT "/api/hosts/myhost/puppetrun" for 10.144.3.143 at 2020-03-13 15:58:26 +0000 2020-03-13T15:58:26 [I|app|81978b3a] Processing by Api::V2::PuppetHostsController#puppetrun as JSON 2020-03-13T15:58:26 [I|app|81978b3a] Parameters: {"apiv"=>"v2", "id"=>"myhost"} 2020-03-13T15:58:26 [I|app|81978b3a] Skipping user group update for user user as usergroup_sync is disabled 2020-03-13T15:58:26 [I|app|81978b3a] Authorized user user(user) 2020-03-13T15:58:27 [I|app|81978b3a] Rendering api/v2/errors/access_denied.json.rabl within api/v2/layouts/error_layout 2020-03-13T15:58:27 [I|app|81978b3a] Rendered api/v2/errors/access_denied.json.rabl within api/v2/layouts/error_layout (0.9ms) 2020-03-13T15:58:27 [I|app|81978b3a] Filter chain halted as :authorize rendered or redirected 2020-03-13T15:58:27 [I|app|81978b3a] Completed 403 Forbidden in 376ms (Views: 7.3ms | ActiveRecord: 52.0ms)
Updated by Dont Matter almost 4 years ago
- Found in Releases 1.24.2, 1.24.3 added
Actions