#9188 Add warning for empty targetattr when creating ACI with RBAC
Closed: fixed 2 years ago by frenaud. Opened 2 years ago by rcritten.

Issue

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=2098187

When we create RBAC permission, with CLI or WebUI, we can create permission with empty target attribute list.

This will act as we didn't permit any attributes to be accessed, so permission without attributes won't do anything.

Version-Release number of selected component (if applicable):
RHEL 8.6
ipa-server-4.9.8-7
389-ds-base-1.4.3.28-6

How reproducible:
always

Expected results:
we should probably add a warning that empty target attributes are not really meaningful. Or just make this mandatory.


Metadata Update from @rcritten:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=2098187

2 years ago

master:

  • dc73813 Warn for permissions with read/write/search/compare and no attrs

ipa-4-10:

  • 499f717 Warn for permissions with read/write/search/compare and no attrs

ipa-4-9:

  • b31631a Warn for permissions with read/write/search/compare and no attrs

Metadata Update from @frenaud:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

2 years ago

Login to comment on this ticket.

Metadata