Jetspeed 2
  1. Jetspeed 2
  2. JS2-915

Provide admin roles security restriction on admin roles maintenance

    Details

    • Type: New Feature New Feature
    • Status: Resolved
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: 2.1.3, 2.2.0
    • Fix Version/s: 2.2.2
    • Component/s: Security
    • Labels:
      None

      Description

      Some organization allow maintenance of user/role/group configuration and assignments by non-administration personnel.
      To protect accidentally locking out "admin" users, configuring a restriction on modifying one or multiple "admin" roles, and users/groups being assigned such roles, to only users having at least one of such roles should be possible.

        Issue Links

          Activity

          Hide
          Ate Douma added a comment -

          While the admin role, and related, associations as well as the admin user now are protected against non-admin users, protecting the admin role itself still isn't.
          E.g. a non-admin user (like manager) could still delete the admin role or modify its attributes.

          Reopening to fix and add this additional restriction as well

          Show
          Ate Douma added a comment - While the admin role, and related, associations as well as the admin user now are protected against non-admin users, protecting the admin role itself still isn't. E.g. a non-admin user (like manager) could still delete the admin role or modify its attributes. Reopening to fix and add this additional restriction as well
          Hide
          Ate Douma added a comment -

          Automatically resolved through JS2-1100

          Show
          Ate Douma added a comment - Automatically resolved through JS2-1100
          Hide
          Ate Douma added a comment -

          Picking this one up, together with JS2-1100, as I reviewed both again and found a reasonably easy way to implement and fix both.

          Show
          Ate Douma added a comment - Picking this one up, together with JS2-1100 , as I reviewed both again and found a reasonably easy way to implement and fix both.
          Hide
          Ate Douma added a comment -

          Downgrading to minor priority and undefined fix version until there is actual demand for it.

          Show
          Ate Douma added a comment - Downgrading to minor priority and undefined fix version until there is actual demand for it.
          Hide
          Ate Douma added a comment -

          This feature might still be useful but no longer is needed for my original client.
          Pushing it back as unassigned until there is an actual request for it.

          Show
          Ate Douma added a comment - This feature might still be useful but no longer is needed for my original client. Pushing it back as unassigned until there is an actual request for it.
          Hide
          Paul Anderson added a comment -

          See also bug listed under JS2-1100

          Show
          Paul Anderson added a comment - See also bug listed under JS2-1100
          Hide
          Ate Douma added a comment -

          Rescheduling to 2.2.2

          Show
          Ate Douma added a comment - Rescheduling to 2.2.2
          Hide
          David Sean Taylor added a comment -

          Ate, you need to decide if you need this in the release or not....

          Show
          David Sean Taylor added a comment - Ate, you need to decide if you need this in the release or not....
          Hide
          Ate Douma added a comment -

          Moving this to the 2.2.1 release

          Show
          Ate Douma added a comment - Moving this to the 2.2.1 release

            People

            • Assignee:
              Ate Douma
              Reporter:
              Ate Douma
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development