sub check_roles {
my ($user, $path, $expected_result) = @_;
- my @ra = $rpcenv->roles($user, $path);
+ my @ra = PVE::AccessControl::roles($rpcenv->{user_cfg}, $user, $path);
my $res = join(',', sort @ra);
die "unexpected result\nneed '${expected_result}'\ngot '$res'\n"