Uploaded image for project: 'Magnolia'
  1. Magnolia
  2. MAGNOLIA-1993

Inconsistent security checks on activation/deactivation

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not an issue
    • Icon: Critical Critical
    • 3.5.4
    • 3.5 RC1, 3.5 RC2, 3.5 RC3, 3.5, 3.5.1, 3.5.2
    • activation
    • None

      After fixing MAGNOLIA-1536 security checks performed on activation/deactivation are now inconsistent. To activate the document permission to access /ActivationHandler is satisfactory condition (no write permission to the given part of repository necessary), however to deactivate document user needs to be able to access the /ActivationHandler and needs REMOVE permission on deactivated document. This leads to situation where user can activate the document but has no permission to deactivate it.

        Acceptance criteria

              pbaerfuss Philipp Bärfuss
              had Jan Haderka
              Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Bug DoR
                  Task DoD