yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1678204] [NEW] User logged out when transitioning to a project with non-admin role

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Shawn Johnson <1678204@xxxxxxxxxxxxxxxxxx>
Date: Fri, 31 Mar 2017 15:24:08 -0000
Reply-to: Bug 1678204 <1678204@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

When a user is viewing the admin overview tab of project A: If she
switches to project B for which she is not an admin, she is logged out
and given an "Unauthorized. Please try logging in again" error.  Due to
the "next" argument in the url, the user must also modify the browser
url before she is able to log back in.


To replicate:

Create project A where the user is a member and admin.
Create project B where the user is a member.
Log into project A and view the Admin->System->Overview tab.
Switch to project B.


Other admin tabs affected differently.  For example, switching projects
from the Admin->System->Hypervisors tab will show the page template with
no data.

I would expect any /admin/ url, for which a user is not an admin, to
redirect to Project->Compute->Overview.

** Affects: horizon
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Dashboard (Horizon).
https://bugs.launchpad.net/bugs/1678204

Title:
  User logged out when transitioning to a project with non-admin role

Status in OpenStack Dashboard (Horizon):
  New

Bug description:
  When a user is viewing the admin overview tab of project A: If she
  switches to project B for which she is not an admin, she is logged out
  and given an "Unauthorized. Please try logging in again" error.  Due
  to the "next" argument in the url, the user must also modify the
  browser url before she is able to log back in.

  
  To replicate:

  Create project A where the user is a member and admin.
  Create project B where the user is a member.
  Log into project A and view the Admin->System->Overview tab.
  Switch to project B.


  Other admin tabs affected differently.  For example, switching
  projects from the Admin->System->Hypervisors tab will show the page
  template with no data.

  I would expect any /admin/ url, for which a user is not an admin, to
  redirect to Project->Compute->Overview.

To manage notifications about this bug go to:
https://bugs.launchpad.net/horizon/+bug/1678204/+subscriptions