[Kimchi-devel] [PATCH] Return 403 Forbidden when user does not have permission to access kimchi
Christy Perez
christy at linux.vnet.ibm.com
Thu Feb 20 20:29:48 UTC 2014
Tested-By Christy Perez <christy at linux.vnet.ibm.com>
OS: RHEL 6.4
I can now log in as a non-root user with no sudo privileges, and try to
perform restricted actions (based on messages included in this patch).
The actions just look like no-ops, and I see a 403 page returned in the
kimchid output. So, I think this is working as intended and just needs
the UI to return the appropriate permission denied error.
On Thu, 2014-02-20 at 15:39 -0300, Aline Manera wrote:
> From: Aline Manera <alinefm at br.ibm.com>
>
> This patch **partial** fix bug #323.
>
> We still need to update UI to properly avoid user to perform some operations
> when he/she does not have enough permission to do it.
>
> Aline Manera (1):
> Return 403 Forbidden when user does not have permission to access
> kimchi
>
> po/en_US.po | 83 +++++++++++++++++++++++++++++++++++++++++--
> po/kimchi.pot | 83 +++++++++++++++++++++++++++++++++++++++++--
> po/pt_BR.po | 83 +++++++++++++++++++++++++++++++++++++++++--
> po/zh_CN.po | 83 +++++++++++++++++++++++++++++++++++++++++--
> src/kimchi/auth.py | 10 ++++--
> src/kimchi/i18n.py | 1 +
> tests/test_authorization.py | 30 ++++++++--------
> 7 files changed, 348 insertions(+), 25 deletions(-)
>
More information about the Kimchi-devel
mailing list