Uploaded image for project: 'OpenNMS'
  1. OpenNMS
  2. NMS-14193

Users with ROLE_USER face Access Denied when accessing Resource Graphs from Reports Section

    XMLWordPrintable

Details

    • Horizon - April 27 - May 11, Horizon - May 11 - 25
    • Backlog
    • 1050

    Description

      When users with security role ROLE_USER try to access Reports >> Resource Graphs >> Choose a node >> Choose any resource, it displays a pop up window stating "Permission Denied

      Seems like Users who have ROLE_USER Security role, they are unable to make a POST to "/opennms/rest/resources/generateId" endpoint to generate the id for the resource-graphs.
      The Access Denied Page comes in but then quickly redirects to the resource graph page.. 
      User is expecting this behavior of Access Denied Page Popping up and then redirecting to not happen to begin with.

       

       

      WITH TEST USER

      Request URL: http://sriraag-meridian-onms.southindia.cloudapp.azure.com:8980/opennms/rest/resources/generateId
      Request Method: POST
      Status Code: 403 Access is denied
      Remote Address: 13.71.123.25:8980
      Referrer Policy: strict-origin-when-cross-origin

       

      This has been noticed on Horizon 29 and also Meridian 2019.1.2

      Attachments

        Issue Links

          Activity

            People

              psuthar Pushkar Suthar
              Sriraag Sridhar Sriraag Sridhar
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: