freeipa

Clone
Source Code
GIT

#1465 WebUI not displaying admin options if the user is admin, but only via nested group
Closed: Fixed None Opened 12 years ago by rcritten.

Closed: Fixed
Reopen Issue

https://bugzilla.redhat.com/show_bug.cgi?id=720336

I have created an user in a testinstance:

[root@ipa01 ~]# id falko
uid=1612200003(falko) gid=1612200003(falko)
groups=1612200003(falko),1612200001(ipausers),1612200004(ttt.admin),1612200000(admins)

The user is in the group 'admin', because the group 'ttt.admin' is listed in the member groups of 'admin'. While this works fine with ldap/sssd, the WebUI seems to not check the nested groups.

If I directly add my testuser to the group 'admin' the WebUI correctly displays the Admin options.

- Install freeipa-server
- Create a group 'xxx'
- Add 'xxx' group to 'admin' group
- Create user 'asdf'
- Add 'asdf' user to the 'xxx' group
- id 'asdf' will show both groups
- WebUI will only display the user webinterface

The bug clarifies that this isn't about viewing the groups of an individual user but in the rights the user gets as a result of group membership.

fixed in 0475340

Metadata Update from @rcritten:
- Issue assigned to admiyo
- Issue set to the milestone: FreeIPA 2.1 - 2011/07
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
normal
None
None
None
None
defect
None
None
Web UI
None
1
None
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=720336
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.