From jetspeed-dev-return-37149-apmail-portals-jetspeed-dev-archive=portals.apache.org@portals.apache.org Tue Sep 27 03:02:52 2011 Return-Path: X-Original-To: apmail-portals-jetspeed-dev-archive@www.apache.org Delivered-To: apmail-portals-jetspeed-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id C8EA4966A for ; Tue, 27 Sep 2011 03:02:52 +0000 (UTC) Received: (qmail 16991 invoked by uid 500); 27 Sep 2011 03:02:52 -0000 Delivered-To: apmail-portals-jetspeed-dev-archive@portals.apache.org Received: (qmail 16874 invoked by uid 500); 27 Sep 2011 03:02:52 -0000 Mailing-List: contact jetspeed-dev-help@portals.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Jetspeed Developers List" Delivered-To: mailing list jetspeed-dev@portals.apache.org Received: (qmail 15261 invoked by uid 99); 27 Sep 2011 03:02:38 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Sep 2011 03:02:38 +0000 X-ASF-Spam-Status: No, hits=-2000.5 required=5.0 tests=ALL_TRUSTED,RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Sep 2011 03:02:35 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 2D7D728B566 for ; Tue, 27 Sep 2011 03:02:14 +0000 (UTC) Date: Tue, 27 Sep 2011 03:02:14 +0000 (UTC) From: "Ate Douma (Updated) (JIRA)" To: jetspeed-dev@portals.apache.org Message-ID: <1538462311.1281.1317092534212.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] [Updated] (JS2-915) Provide admin roles security restriction on admin roles maintenance MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/JS2-915?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Ate Douma updated JS2-915: -------------------------- Fix Version/s: 2.2.2 Assignee: Ate Douma Picking this one up, together with JS2-1100, as I reviewed both again and found a reasonably easy way to implement and fix both. > Provide admin roles security restriction on admin roles maintenance > ------------------------------------------------------------------- > > Key: JS2-915 > URL: https://issues.apache.org/jira/browse/JS2-915 > Project: Jetspeed 2 > Issue Type: New Feature > Components: Security > Affects Versions: 2.1.3, 2.2.0 > Reporter: Ate Douma > Assignee: Ate Douma > Priority: Minor > Fix For: 2.2.2 > > > Some organization allow maintenance of user/role/group configuration and assignments by non-administration personnel. > To protect accidentally locking out "admin" users, configuring a restriction on modifying one or multiple "admin" roles, and users/groups being assigned such roles, to only users having at least one of such roles should be possible. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org For additional commands, e-mail: jetspeed-dev-help@portals.apache.org