scottsignal opened a new issue, #9233:
URL: https://github.com/apache/cloudstack/issues/9233
<!--
Verify first that your issue/request is not already reported on GitHub.
Also test if the latest release and main branch are affected too.
Always add information AFTER of these HTML comments, but no need to delete
the comments.
-->
##### ISSUE TYPE
<!-- Pick one below and delete the rest -->
* Bug Report
##### COMPONENT NAME
<!--
Categorize the issue, e.g. API, VR, VPN, UI, etc.
-->
~~~
UI
~~~
##### CLOUDSTACK VERSION
<!--
New line separated list of affected versions, commit ID for issues on main
branch.
-->
~~~
4.19.0.1
~~~
##### CONFIGURATION
<!--
Information about the configuration if relevant, e.g. basic network,
advanced networking, etc. N/A otherwise
-->
N/A
##### OS / ENVIRONMENT
<!--
Information about the environment if relevant, N/A otherwise
-->
Ubuntu 22.04
Single-node Management Server
MySQL 5.7
##### SUMMARY
<!-- Explain the problem/feature briefly -->
Permissions don't seem to be applied to the Dashboard Resources totals. Was
unsure if to file this as a bug or enhancement request. if you set Deny to
for example listVPC's, the dashboard still attempts to pull the item counts for
Resources on the Default dashboard. The same behavior occurs if you create a
project and look at the project dashboard.
##### STEPS TO REPRODUCE
<!--
For bugs, show exactly how to reproduce the problem, using a minimal
test-case. Use Screenshots if accurate.
-->
1.)Set Deny to the following permissions and log into a Domain Admin account:
listKubernetesClusters
listVPCs
listPublicIpAddresses
2.) The Resource counts for these items will still be listed on the
Default/Project dashboard.
3.) Looking at the DevTools for browser, you will see:
<!-- Paste example playbooks or commands between quotes below -->
~~~
Failed to load resource: the server responded with a status of 432
(432)
request.js:37 Object
createError.js:16 Uncaught (in promise) Error: Request failed with status
code 432
at e.exports (createError.js:16:15)
at e.exports (settle.js:17:12)
at XMLHttpRequest.s (xhr.js:54:7)
AutogenView.vue:632 DEBUG - Due to route change, ignoring results for any
on-going API request listProjects
vuex.esm-browser.js:1057 Uncaught (in promise) r
client/api/?listall=true&page=1&pagesize=1&command=listKubernetesClusters&response=json
Failed to load resource: the server responded with a status of 432
(432)
request.js:37 Object
createError.js:16 Uncaught (in promise) Error: Request failed with status
code 432
at e.exports (createError.js:16:15)
at e.exports (settle.js:17:12)
at XMLHttpRequest.s (xhr.js:54:7)
client/api/?listall=true&page=1&pagesize=1&command=listVPCs&response=json
Failed to load resource: the server responded with a status of 432
(432)
request.js:37 Object
createError.js:16 Uncaught (in promise) Error: Request failed with status
code 432
at e.exports (createError.js:16:15)
at e.exports (settle.js:17:12)
at XMLHttpRequest.s (xhr.js:54:7)
client/api/?listall=true&page=1&pagesize=1&command=listPublicIpAddresses&response=json
~~~
<!-- You can also paste gist.github.com links for larger files -->
##### EXPECTED RESULTS
<!-- What did you expect to happen when running the steps above? -->
~~~
Expectation is that these elements would be hidden if the tenant does not
have access to them. Much like the menu items that disappear when you don't
have access to say VPCs.
~~~
##### ACTUAL RESULTS
<!-- What actually happened? -->
<!-- Paste verbatim command output between quotes below -->
~~~
Items are currently shown that customer does not have access to be able to
see
~~~
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscr...@cloudstack.apache.org.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
