Uploaded image for project: 'Jetspeed 2 (Retired)'
  1. Jetspeed 2 (Retired)
  2. JS2-1100

DeveloperBrowser-type portlets for delegated admin can be used to assign global admin role

    XMLWordPrintableJSON

Details

    Description

      There is no way for a deployer to configure preset lists (or combinations) of allowed roles etc that a delegated administrator can assign to filtered users, or to filter out certain roles from the list of options available. (Also no way to set required attributes like language, which would be useful too).

      So a delegated admin can give users full global admin privileges. This makes the portlet unsuitable for production use.

      Attachments

        Issue Links

          relates to

          New Feature - A new feature of the product, which has yet to be developed. JS2-915 Provide admin roles security restriction on admin roles maintenance

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              ate Ate Douma
              wanderer Paul Anderson
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: