Notice: In order to edit this ticket you need to be either: a Product Owner, The owner or the reporter of the ticket, or, in case of a Task not yet assigned, a team_member"

Task #12706 (new)

Opened 5 years ago

Last modified 4 years ago

Bug: SecurityViolation when removed from group

Reported by: wmoore Owned by: wmoore
Priority: major Milestone: Permissions
Component: Web Version: 5.0.5
Keywords: n.a. Cc: atarkowska, jburel
Resources: n.a. Referenced By: n.a.
References: n.a. Remaining Time: n.a.
Sprint: n.a.

Description

See https://www.openmicroscopy.org/qa2/qa/feedback/10426/

If you are logged in to web when you are removed from one of your groups, when you try to load data from that group you will get a security violation.

Not sure how Insight handles this yet.

Change History (5)

comment:1 Changed 5 years ago by wmoore

  • Milestone changed from 5.1.2 to 5.1.3

comment:2 Changed 4 years ago by jamoore

  • Milestone changed from 5.1.4 to OMERO-5.1.4

Splitting 5.1.4 due to milestone decoupling

comment:3 Changed 4 years ago by sbesson

  • Milestone changed from OMERO-5.1.4 to 5.x

As discussed with Will earlier today, pushing the non-critical Web tickets out of 5.1.4

comment:4 Changed 4 years ago by wmoore

Strangely, this exact same Security Violation has been reported again from the same server, with the same User and Group IDs (but a different user e-mail address).
https://www.openmicroscopy.org/qa2/qa/feedback/16946/

comment:5 Changed 4 years ago by jamoore

  • Milestone changed from 5.x to Permissions
Note: See TracTickets for help on using tickets. You may also have a look at Agilo extensions to the ticket.

1.3.13-PRO © 2008-2011 Agilo Software all rights reserved (this page was served in: 0.74348 sec.)

We're Hiring!