[MAGNOLIA-4723] Trying to choose Node when editing ACL for workspace 'users' causes RuntimeException, manual ACL doesn't work as expected Created: 07/Dec/12  Updated: 10/Dec/12  Resolved: 10/Dec/12

Status: Closed
Project: Magnolia
Component/s: security
Affects Version/s: 4.5.6
Fix Version/s: None

Type: Bug Priority: Critical
Reporter: Christian Kutschke Assignee: Unassigned
Resolution: Duplicate Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: PNG File superuser_acl.png     PNG File users_tree-config.png    
Issue Links:
duplicate
duplicates MAGNOLIA-4633 Allow specifying access credentials t... Closed
Template:
Acceptance criteria:
Empty
Task DoD:
[ ]* Doc/release notes changes? Comment present?
[ ]* Downstream builds green?
[ ]* Solution information and context easily available?
[ ]* Tests
[ ]* FixVersion filled and not yet released
[ ]  Architecture Decision Record (ADR)
Bug DoR:
[ ]* Steps to reproduce, expected, and actual results filled
[ ]* Affected version filled
Date of First Response:

 Description   

Hi,

when trying to edit the ACL for workspace 'users' for any role (i. e. superuser), a java.lang.RuntimeException occurs, causing the container to respond with HTTP 500.
This can be reproduced arbitrary on the Public Demo Instance.

Furthermore, when I configure an ACL-Rule for this workspace manually, say with path '/admin' and permission 'Read only', users with this role assigned can edit and create users, too.
Beside the mentioned Exception: Is there any way to configure read/write - Permissions on the 'users' workspace, as it is possible for the other workspaces?



 Comments   
Comment by Christian Kutschke [ 10/Dec/12 ]

Adding a data node 'rootPath' with value '/' to the configuration of 'adminInterface/trees/users' solves the exception issue.

Comment by Ondrej Chytil [ 10/Dec/12 ]

Already fixed by MAGNOLIA-4633 and will be part of 4.5.7 release.

Generated at Mon Feb 12 03:58:25 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.