Uploaded image for project: 'Jetspeed 2'
  1. Jetspeed 2
  2. JS2-1100

DeveloperBrowser-type portlets for delegated admin can be used to assign global admin role

    Details

      Description

      There is no way for a deployer to configure preset lists (or combinations) of allowed roles etc that a delegated administrator can assign to filtered users, or to filter out certain roles from the list of options available. (Also no way to set required attributes like language, which would be useful too).

      So a delegated admin can give users full global admin privileges. This makes the portlet unsuitable for production use.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                adouma Ate Douma
                Reporter:
                wanderer Paul Anderson
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: