[CLOUDSTACK-7283] Allow regular user to execute listUsers API call - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 4.5.0
Fix Version/s: 4.5.1
Component/s: API, Doc
Security Level: Public (Anyone can view this level - this is the default.)
Labels:
None

Description

Since normal-user role can have access to listAccounts API that returns user info + he can update users info by calling updateUser, he should have an access to listUsers API. The response should return his user info only. Other users belonging to the same user's account, shouldn't be returned.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Alena Prokharchyk

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 07/Aug/14 21:34

Updated:: 23/Mar/15 13:49

Resolved:: 23/Mar/15 13:49

Agile

View on Board

Allow regular user to execute listUsers API call