[Registry-dev] [jira] Commented: (REGISTRY-123) Everyone read
permission should not be allowed to deny..
Chathura Ekanayake (JIRA)
jira at wso2.org
Wed Jan 23 00:13:01 PST 2008
[ http://wso2.org/jira/browse/REGISTRY-123?page=comments#action_15049 ]
Chathura Ekanayake commented on REGISTRY-123:
---------------------------------------------
If everyone is denied none of the normal users can access it. But admin user can still access it as this special user does not belong to the everyone role. So I think this behavior is fine.
> Everyone read permission should not be allowed to deny..
> --------------------------------------------------------
>
> Key: REGISTRY-123
> URL: http://wso2.org/jira/browse/REGISTRY-123
> Project: WSO2 Registry
> Issue Type: Bug
> Affects Versions: SNAPSHOT
> Environment: Ubuntu 7.10, JDK 1.5.0_08, tomcat 6.0.14, Firefox/2.0.0.8
> Reporter: Krishantha Samaraweera
> Assigned To: Chathura Ekanayake
>
> How to recreate:
> 1.login as admin.
> 2.go to "Add user permission" pane.
> 3. now tick the "deny read" check box of role "everyone"
> 4. now logout and try to login again,
> If everyone's read permission is denied then no one can login to the system again. Registry will display 404 unauthorized message continuously . So everyone read permission should not be allowed to deny..
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the Registry-dev
mailing list