You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Radhika Nair (JIRA)" <ji...@apache.org> on 2014/11/20 02:04:34 UTC

[jira] [Assigned] (CLOUDSTACK-7283) Allow regular user to execute listUsers API call

     [ https://issues.apache.org/jira/browse/CLOUDSTACK-7283?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Radhika Nair reassigned CLOUDSTACK-7283:
----------------------------------------

    Assignee:     (was: Radhika Nair)

> Allow regular user to execute listUsers API call
> ------------------------------------------------
>
>                 Key: CLOUDSTACK-7283
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-7283
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: API, Doc
>    Affects Versions: 4.5.0
>            Reporter: Alena Prokharchyk
>             Fix For: 4.5.0
>
>
> Since normal-user role can have access to listAccounts API that returns user info + he can update users info by calling updateUser, he should have an access to listUsers API. The response should return his user info only. Other users belonging to the same user's account, shouldn't be returned.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)