Task #1769 (new)
Opened 14 years ago
Last modified 14 years ago
Permissions : Handle admin/PI viewing/annotating in private group — at Initial Version
Reported by: | jamoore | Owned by: | jamoore |
---|---|---|---|
Priority: | major | Milestone: | OMERO-Beta4.2 |
Component: | Security | Version: | 4.1 |
Keywords: | n.a. | Cc: | atarkowska, jburel |
Resources: | n.a. | Referenced By: | n.a. |
References: | n.a. | Remaining Time: | n.a. |
Sprint: | n.a. |
Description
This ticket is a part of #1434
A system or group administrator who views or attempts to annotate data belonging in a private or non-member group may break group-based security settings for the owner.
Options:
- make annotations/rendering settings/thumbnails belong to the owner (or the group in the case of a shared group which the admin is not a member of))
- make the session read-only (with special handling for rendering settings and thumbnails)
- ???
Note: See
TracTickets for help on using
tickets.
You may also have a look at Agilo extensions to the ticket.