We use cookies to ensure that we give you the best experience on our website.  Visit our Privacy Policy to learn more. If you continue to use this site, we will assume that you are okay with it.

Your choices regarding cookies on this site.
Your preferences have been updated.
In order for the changes to take effect completely please clear your browser cookies and cache. Then reload the page.

Werk #0951: table servicegroups: fixed service visibility when using group_authorization AUTH_STRICT

ComponentLivestatus
Titletable servicegroups: fixed service visibility when using group_authorization AUTH_STRICT
Date2014-07-10 14:09:07
Checkmk EditionCheckmk Raw Edition (CRE)
Checkmk Version1.2.5i5
LevelTrivial Change
ClassBug Fix
CompatibilityCompatible - no manual interaction needed

This only applies with the setting group_authorization = AUTH_STRICT

When an auth user was given the livestatus table servicegroups did not check if the auth user had permissions to all objects of the servicegroup. As a result the user was able to view servicegroups, even if he was not a contact for every object in it. However, the "forbidden" object itself was not returned, just a subset of the group. This was incorrect. The user needs to be contact of every element in this group. Otherwise he should not see the group at all..