bug #9051
openRole Project manager should not have right to edit users and creating a new user with missing rights results in two message-boxes
0%
Description
mail AM:
Außerdem kommt nach dem Versuch einen User anzulegen, ohne dass man die Rechte dazu hat, erst ein normaler Hinweisdialog, dass „Access denied“ und dann kommt noch der „Unexpected error“ Dialog mit stacktrace unten. Letzteres sollte eigentlich nicht passieren.
Related issues
Updated by Andreas Müller almost 4 years ago
- Target version changed from Release 5.15 to Release 5.18
Updated by Katja Luther over 3 years ago
- Target version changed from Release 5.18 to Release 5.19
Updated by Andreas Müller about 3 years ago
- Target version changed from Release 5.19 to Release 5.21
Updated by Andreas Müller about 3 years ago
- Target version changed from Release 5.21 to Release 5.22
Updated by Katja Luther about 3 years ago
- Target version changed from Release 5.22 to Release 5.25
Updated by Katja Luther almost 3 years ago
- Status changed from New to Feedback
- Assignee changed from Katja Luther to Andreas Müller
How are you able to create a user without permission, the admin menu is available only if you are admin or project manager and having these roles also allows you to create new users?
Updated by Andreas Müller almost 3 years ago
- Status changed from Feedback to New
- Assignee changed from Andreas Müller to Katja Luther
Katja Luther wrote:
How are you able to create a user without permission, the admin menu is available only if you are admin or project manager and having these roles also allows you to create new users?
No this is not true and was obvious in the original mail (2020-06-02): "Hmm, stimmt, ProjectManager scheint dieses Recht nicht zu haben, zumindest bekomme ich auch eine „Access denied“ Fehlermeldung." (a reason why I think that it is always good to cite mail threads more or less in full in tickets)
Außerdem in der Mail:
Das ist wohl auch so gewollt. Du bräuchtest laut https://dev.e-taxonomy.eu/redmine/projects/edit/wiki/CdmAuthorisationAndAccessControl
noch ROLE_USER_MANAGER, dafür gibt es aber noch keine automatisch angelegte Gruppe.
Andreas K., ist das so gewollt oder fehlt diese noch beim FirstDataImporter?
So the error can be reproduced by a project manager without ROLE_USER_MANAGER (I tested on casearia).
I also created a new ticket for the above issue with FirstDataImporter: #9612
Updated by Andreas Müller almost 3 years ago
- Related to bug #9612: ROLE_USER_MANAGER is missing as a group in FirstDataImporter added
Updated by Andreas Müller almost 3 years ago
- Subject changed from Creating a new user with missing rights results in two message-boxes to Role Project manager should not have right to edit users and creating a new user with missing rights results in two message-boxes
Updated by Andreas Müller almost 3 years ago
I changed the title of the ticket as the incorrect evaluation of the rights for role_project_manager is the more critical issue here (if this is fixed the other issue is not really relevant anymore)
Updated by Andreas Müller almost 3 years ago
- Target version changed from Release 5.25 to Release 5.45
Updated by Andreas Müller over 2 years ago
- Related to bug #6106: [Discuss] Handle rights and roles for CdmPreferences added
Updated by Andreas Müller over 2 years ago
- Related to task #8602: Discuss: Local Preferences & Server-sided Preferences in same menu? added