Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-10173

Allow configured principals to impersonate any user

    XMLWordPrintableJSON

Details

    • Story
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.54.0
    • core, security-spi
    • None

    Description

      The issue is related to AEM's SITES-10289

      Customer Use-case :

      Customer is an AMS customer so admin user is not constantly available. Customer can attempt to contact lock owner, however, they are not available as well.

      User will lock pages when they are working on it and may forget to unlock the page.

      Team will no longer be able to work on the locked page until AMS admin is available or lock owner admin is available to unlock the page.

      Customers have administrators available but administrators do not have the ability to unlock the pages.

      Steps to replicate :

      Impersonation:

      Create test-author user and add them to content-authors group
      Create test-admin user and add them to administrators group
      Log into the AEM instance as test-admin and try to impersonate test-author - this is not possible unless you are logged in as the actual "admin" user.

      Current/Experienced Behavior :

      Administrators are not able to unlock pages or impersonate users (unless their user id is added to the impersonators of the target user)

      Improved/Expected Behavior :

      Administrators should be able to unlock pages and impersonate other users.

      Attachments

        Issue Links

          There are no Sub-Tasks for this issue.

          Activity

            People

              antoniu98 Antoniu N
              antoniu98 Antoniu N
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: