Re: [Kimchi-devel] [PATCH] Return 403 Forbidden when user does not have permission to access kimchi
Tested-By Christy Perez <christy(a)linux.vnet.ibm.com>
OS: RHEL 6.4
I can now log in as a non-root user with no sudo privileges, and try to
perform restricted actions (based on messages included in this patch).
The actions just look like no-ops, and I see a 403 page returned in the
kimchid output. So, I think this is working as intended and just needs
the UI to return the appropriate permission denied error.
On Thu, 2014-02-20 at 15:39 -0300, Aline Manera wrote:
From: Aline Manera <alinefm(a)br.ibm.com>
This patch **partial** fix bug #323.
We still need to update UI to properly avoid user to perform some operations
when he/she does not have enough permission to do it.
Aline Manera (1):
Return 403 Forbidden when user does not have permission to access
kimchi
po/en_US.po | 83 +++++++++++++++++++++++++++++++++++++++++--
po/kimchi.pot | 83 +++++++++++++++++++++++++++++++++++++++++--
po/pt_BR.po | 83 +++++++++++++++++++++++++++++++++++++++++--
po/zh_CN.po | 83 +++++++++++++++++++++++++++++++++++++++++--
src/kimchi/auth.py | 10 ++++--
src/kimchi/i18n.py | 1 +
tests/test_authorization.py | 30 ++++++++--------
7 files changed, 348 insertions(+), 25 deletions(-)