Something went wrong while setting issue due date.
DNS : ACL prevents limited user to delete NS record when removing a system
Closed
DNS : ACL prevents limited user to delete NS record when removing a system
Description
Deleting a system with an admin account remove the DNS entry as well (a blue popup with "DNS update" shows up) while doing it with a limited account does not (no popup and removal is faster).
Meanwhile, renaming a system with the limited account does update the DNS as well (I think it delete/recreate the entries in an LDAP pov). The blue message pops up.
Distribution Name and Version
RHEL7
FusionDirectory Version
1.2 fixes
Plugin with the defect
DNS
PHP version used
5.4
Origin of php packages
epel/rhel channels
Steps to Reproduce
- Delete a system
- Edit the DNS zone the system was registered in, the record still exists
Expected behavior:
Deletion with limited account
Actual behavior:
No deletion
Reproduces how often: 100%
Additional Information
ACLs : TechDNSZone appplied to zone "example.com." : DNS Zone -> Object: DNS Zone :
- Create + Delete objects
- Reverse Zones for this zone rw
- DNS Records for this zone (dnsRecords) rw DNS Zone -> Object: DNS Record :
- Create + Delete objects
- A and PTR Records rw
TechDNSReload applied to system object dns-m (master dns server):
Server -> Server Object : This server name (cn) r / A short description (description) r
Server -> DNS : Full object : r
TechDNSSystems applied to department "Postes utilisateurs" containing systems :
DNS Zone -> Object: DNS Zone: DNS Records for this zone (dnsRecords) rw
-> Object: DNS Records : A Records (dnsRecord_aRecord) rw
Workstation -> Object: Workstation : Create / Move / Delete / rw (full)
-> Object: Model r
-> Object: DNS Create / rw (full) + DNS Zone for this host (fdDNSZoneDn) rw
-> Object DHCP : DHCP Hosts declared for this system (dhcpHosts) rw