Jetspeed 2
  1. Jetspeed 2
  2. JS2-1100

DeveloperBrowser-type portlets for delegated admin can be used to assign global admin role

    Details

      Description

      There is no way for a deployer to configure preset lists (or combinations) of allowed roles etc that a delegated administrator can assign to filtered users, or to filter out certain roles from the list of options available. (Also no way to set required attributes like language, which would be useful too).

      So a delegated admin can give users full global admin privileges. This makes the portlet unsuitable for production use.

        Issue Links

          Activity

          No work has yet been logged on this issue.

            People

            • Assignee:
              Ate Douma
              Reporter:
              Paul Anderson
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development