Details
-
Type:
Bug
-
Status:
Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 1.2
-
Fix Version/s: 1.2
-
Component/s: Web - Security
-
Labels:None
-
Complexity:Intermediate
-
Number of attachments :
Description
As a project group admin for a single group, I am able to edit my user account and grant any role up to and including system administrator.
A project group admin should be able to grant the roles for his own project group to other users. He should not be able to elevate his own permissions.
Attachments
Issue Links
| This issue relates to: | ||||
| CONTINUUM-1783 | a project administrator is acting like a user administrator |
|
|
|
| This issue depends upon: | ||||
| REDBACK-160 | non-system-administrator or non-user-administrator should not be able to grant administrator roles |
|
|
|
Activity
Hide
Olivier Lamy
added a comment -
upgrade to redback 1.1.1 done in rev 696596
Thanks for the fast release 
Show
Olivier Lamy
added a comment - upgrade to redback 1.1.1 done in rev 696596
Thanks for the fast release
Attaching continuum-user-edit.pdf showing all the options available to a user who currently only has a single project group admin role.
The first page of the user edit form showing the effective roles can be seen attached to
CONTINUUM-1865.CONTINUUM-1865.