Fixes #31836 - Unclear error message for cvv promotion with bad perrms (

Katello#9153)

(cherry picked from commit 1bba15f)

app/controllers/katello/concerns/api/v2/authorization.rb

@@ -39,7 +39,20 @@ def find_unauthorized_katello_resource
       end
 
       def throw_resource_not_found(name: resource_name, id: params[:id])
-        fail HttpErrors::NotFound, _("Could not find %{name} resource with id %{id}") % {id: id, name: name}
+        perms_message = "Potential missing permissions: " +
+          missing_permissions.map(&:name).join(', ')
+        fail HttpErrors::NotFound, _("Could not find %{name} resource with id %{id}. %{perms_message}") % {id: id, name: name, perms_message: perms_message}
+      end
+
+      def missing_permissions
+        missing_perms = ::Foreman::AccessControl.permissions_for_controller_action(path_to_authenticate)
+
+        # promote_or_remove_content_views_to_environments has a special relationship to promote_or_remove_content_views
+        if path_to_authenticate["controller"] == "katello/api/v2/content_view_versions" &&
+            path_to_authenticate["action"].in?(["promote", "remove_from_environment", "remove", "republish_repositories"])
+          missing_perms << ::Permission.find_by(name: "promote_or_remove_content_views_to_environments")
+        end
+        missing_perms
       end
 
       def throw_resources_not_found(name:, expected_ids: [])

test/controllers/api/v2/repository_sets_controller_test.rb

@@ -196,7 +196,7 @@ def test_invalid_product_failure
 
       results = JSON.parse(response.body)
 
-      error_message = "Could not find product resource with id #{fake_product_id}"
+      error_message = "Could not find product resource with id #{fake_product_id}. Potential missing permissions: edit_products"
 
       assert_response :not_found
       assert_includes results["errors"], error_message