## What changes were proposed in this pull request? Protect the ClientConfig resource so that only authorized users may have read-only access the data.
Users with the following permission should have read-only access: * `CLUSTER.VIEW_CONFIGS` * `SERVICE.VIEW_CONFIGS` * `HOST.VIEW_CONFIGS` These permissions should be allow for the following roles: * `AMBARI.ADMINISTRATOR` * `CLUSTER.ADMINISTRATOR` * `CLUSTER.OPERATOR` * `SERVICE.ADMINISTRATOR` * `SERVICE.OPERATOR` * `CLUSTER.USER` Users with no role related to the cluster may not view the data. The `org.apache.ambari.server.security.TestAuthenticationFactory` was updated to match the permission sets from the database. This exposed issues in the `org.apache.ambari.server.controller.internal.AlertTargetResourceProviderTest` class, which needed to be fixed. This was cherry-picked from #2205 ## How was this patch tested? Manually tested using users with various roles. Updated unit tests, all passed. Please review [Ambari Contributing Guide](https://cwiki.apache.org/confluence/display/AMBARI/How+to+Contribute) before opening a pull request. [ Full content available at: https://github.com/apache/ambari/pull/2206 ] This message was relayed via gitbox.apache.org for [email protected]
