Uploaded image for project: 'Archiva'
  1. Archiva
  2. MRM-1908

Logged on users can write any repository

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.2.0
    • Fix Version/s: 2.2.3
    • Component/s: Users/Security
    • Labels:
      None

      Description

      Our sandbox Archiva 2.2.0 instance is connected with our corporate LDAP service. I created a repository with name common-internal. My LDAP user feketk1 doesn't have any permission on the common-internal repository. When I login through the web UI with my feketk1 user, I am able to upload artefacts to the common-internal repository.

      For additional details please check attached screenshots.

        Attachments

        1. archiva1.jpg
          60 kB
          Krisztian Fekete
        2. archiva2.jpg
          98 kB
          Krisztian Fekete
        3. archiva3.jpg
          78 kB
          Krisztian Fekete
        4. archiva4.jpg
          52 kB
          Krisztian Fekete
        5. archiva5.jpg
          91 kB
          Krisztian Fekete
        6. archiva6.jpg
          76 kB
          Krisztian Fekete
        7. MRM-1908.patch
          7 kB
          Oliver E

          Activity

            People

            • Assignee:
              olamy Olivier Lamy
              Reporter:
              chriss745 Krisztian Fekete
            • Votes:
              4 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: