Warning: Can't synchronize with repository "(default)" (/home/git/ome.git does not appear to be a Git repository.). Look in the Trac log for more information.
Notice: In order to edit this ticket you need to be either: a Product Owner, The owner or the reporter of the ticket, or, in case of a Task not yet assigned, a team_member"

Task #1769 (new)

Opened 14 years ago

Last modified 14 years ago

Permissions : Handle admin/PI viewing/annotating in private group — at Version 3

Reported by: jamoore Owned by: jamoore
Priority: major Milestone: OMERO-Beta4.2
Component: Security Version: 4.1
Keywords: n.a. Cc: atarkowska, jburel
Resources: n.a. Referenced By: n.a.
References: n.a. Remaining Time: n.a.
Sprint: n.a.

Description (last modified by jmoore)

This ticket is a part of #1434

A system or group administrator who views or attempts to annotate data belonging in a private or non-member group may break group-based security settings for the owner.

Options:

  • make objects belong to admins public
  • make annotations/rendering settings/thumbnails belong to the owner (or the group in the case of a shared group which the admin is not a member of))
  • make the session read-only (with special handling for rendering settings and thumbnails)
  • add a flag or other marker to allow user-reading of such data.
  • ???

Change History (3)

comment:1 Changed 14 years ago by jmoore

  • Description modified (diff)

comment:2 Changed 14 years ago by jmoore

  • Description modified (diff)

comment:3 Changed 14 years ago by jmoore

  • Description modified (diff)
Note: See TracTickets for help on using tickets. You may also have a look at Agilo extensions to the ticket.

1.3.13-PRO © 2008-2011 Agilo Software all rights reserved (this page was served in: 0.68935 sec.)

© 2000-2014 University of Dundee & Open Microscopy Environment. Creative Commons Attribution 3.0 Unported License
OME source code is available under the GNU General public license or through commercial license from Glencoe Software

We're Hiring!