Task #9620 (closed)
Opened 12 years ago
Closed 12 years ago
BUG: Read-annotate permissions not correct
Reported by: | rkferguson | Owned by: | jburel |
---|---|---|---|
Priority: | critical | Milestone: | OMERO-4.4.4 |
Component: | Insight | Version: | n.a. |
Keywords: | n.a. | Cc: | |
Resources: | n.a. | Referenced By: | n.a. |
References: | n.a. | Remaining Time: | n.a. |
Sprint: | 2012-09-25 (5) |
Description
User-1 was only in private-1 so added them to Read-annotate-1 to test.
In Read-annotate-1 - cannot edit name/description, rate, add tag or attachment or comment on other user's data. Cannot save ROIs in Read-annotate-1 group.
Behaves as expected in web client - can add tags, attachments and comments to other users data. Lock icon is present on images.
Attachments (3)
Change History (11)
comment:1 Changed 12 years ago by rkferguson
Changed 12 years ago by rkferguson
Changed 12 years ago by rkferguson
comment:2 Changed 12 years ago by rkferguson
Windows 7 - Insight. Further anomalies with permissions in other tests - Insight - logged in as user-12 Private-1 - can view data belonging to user-1 - can delete tags and attachments belonging to user-1 but cannot add tags, attachments, comments or rate/edit name or description.
comment:3 Changed 12 years ago by rkferguson
Windows 7 - IE Web client. Logged in as user-12 - Private-1 viewing data belonging to user-1 - can edit name and description but not add tags, attachments or comments. Screenshot attached.
Changed 12 years ago by rkferguson
comment:4 Changed 12 years ago by rkferguson
Testing with Webstart in Windows 7 - behaves the same as Insight - cannot edit name or descriptions but can delete annotations and attachments belonging to other users on other user's data.
comment:5 Changed 12 years ago by jburel
Several different problems here. That need to be broken down depending on group permissions.
Windows 7 - IE Web client. Logged in as user-12 - Private-1 viewing data belonging to user-1 - can edit name and description but not add tags, attachments or comments. Screenshot attached.
According to permissions table, user-12 should not be able to Edit or add annotations. The behavior of insight is the correct one see permissions table.
See #9626
comment:6 Changed 12 years ago by jburel
how did you add the user? Did you reconnect after adding?
comment:7 Changed 12 years ago by rkferguson
Quit Insight and did it through admin in web client then re-opened Insight.
comment:8 Changed 12 years ago by jburel
- Resolution set to invalid
- Status changed from new to closed
Probably due to the roles not correctly set. I have retested with correct set-up i.e. user-5 as group owner of read-annotate and user-3 basic member.
Noted anomalous behaviour - in Read-annotate-1 looking at user-6 data - some cannot annotate and some can - see screenshots. No particular pattern discernible.