portals-jetspeed-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ate Douma (Reopened) (JIRA)" <jetspeed-...@portals.apache.org>
Subject [jira] [Reopened] (JS2-915) Provide admin roles security restriction on admin roles maintenance
Date Tue, 04 Oct 2011 19:41:34 GMT

     [ https://issues.apache.org/jira/browse/JS2-915?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

Ate Douma reopened JS2-915:

While the admin role, and related, associations as well as the admin user now are protected
against non-admin users, protecting the admin role itself still isn't.
E.g. a non-admin user (like manager) could still delete the admin role or modify its attributes.

Reopening to fix and add this additional restriction as well 
> Provide admin roles security restriction on admin roles maintenance
> -------------------------------------------------------------------
>                 Key: JS2-915
>                 URL: https://issues.apache.org/jira/browse/JS2-915
>             Project: Jetspeed 2
>          Issue Type: New Feature
>          Components: Security
>    Affects Versions: 2.1.3, 2.2.0
>            Reporter: Ate Douma
>            Assignee: Ate Douma
>            Priority: Minor
>             Fix For: 2.2.2
> Some organization allow maintenance of user/role/group configuration and assignments
by non-administration personnel.
> To protect accidentally locking out "admin" users, configuring a restriction on modifying
one or multiple "admin" roles, and users/groups being assigned such roles, to only users having
at least one of such roles should be possible.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira


To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-dev-help@portals.apache.org

View raw message