A non-admin user with 'admin' permission to an organization cannot modify it #15950
Description
Please confirm the following
- I agree to follow this project's code of conduct.
- I have checked the current issues for duplicates.
- I understand that AWX is open source software provided for free and that I might not receive a timely response.
- I am NOT reporting a (potential) security vulnerability. (These should be emailed to
security@ansible.cominstead.)
Bug Summary
- when an organization is created using
awx.awx.organizationand the non-admin user is given admin permissions to it usingawx.awx.role, that user cannot modify it from the GUI. - when an organization is created using the GUI by the admin and the non-admin user is given admin permissions to it using the same UI by the same admin, the user can modify it from the GUI.
AWX version
24.6.2.dev0+g94e5795dfc.d20241202
Select the relevant components
- UI
- UI (tech preview)
- API
- Docs
- Collection
- CLI
- Other
Installation method
docker development environment
Modifications
no
Ansible version
2.18.4
Operating system
Ubuntu 24.04 noble
Web browser
Chrome
Steps to reproduce
- name: Creating the customer's 'my Organization'
awx.awx.organization:
controller_host: "{{ ansible_host_fqdn }}"
controller_oauthtoken: "{{ awx_token }}"
default_environment: "{{ default_environment }}"
description: 'My Organization'
galaxy_credentials: "{{ galaxy_credentials }}"
name: "my Organization"
state: 'present'
validate_certs: true
- name: Giving the customer admin permissions to 'my Organization'
awx.awx.role:
controller_host: "{{ ansible_host_fqdn }}"
controller_oauthtoken: "{{ awx_token }}"
organizations:
- "my Organization"
role: 'admin'
state: 'present'
users:
- "username"
validate_certs: true
Expected results
The user 'username' should be able to edit the organization "my Organization".
Actual results
The error message You do not have permission to perform this action. appears when the user tries to change the organization name.
Additional information
No response