Users without "bypass all capabilities" are unable to remove TLP markings from reports #3919
Labels
bug
use for describing something not working as expected
needs more info
Intel needed about the use case
solved
use to identify issue that has been solved (must be linked to the solving PR)
Description
When attempting to remove TLP markings from reports that contain multiple markings, the action is rejected and instead I receive an error. When the user has elevated permissions and has "bypass all capabilities" enabled, they are able to perform the change no problem.
Environment
Reproducible Steps
Steps to create the smallest reproducible scenario:
Expected Output
We would expect that the TLP label would be removed.
Actual Output
The TLP label is not removed, and instead we get an error:
Additional information
When we update the user's role to have the permissions "bypass all capabilities", the user is able to remove TLP labels. When the user has all permissions enabled EXCEPT "bypass all capabilities", they are not able to perform the action. Because of this, I think it might be an issue with permissions.
Screenshots (optional)
The text was updated successfully, but these errors were encountered: