[jira] [Updated] (ARGUS-74) Delegated admin can access all the policies through URL

Velmurugan Periasamy (JIRA) Sat, 20 Sep 2014 09:41:11 -0700

     [ 
https://issues.apache.org/jira/browse/ARGUS-74?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Velmurugan Periasamy updated ARGUS-74:
--------------------------------------
    Assignee: Selvamohan Neethiraj  (was: Velmurugan Periasamy)

> Delegated admin can access all the policies through URL
> -------------------------------------------------------
>
>                 Key: ARGUS-74
>                 URL: https://issues.apache.org/jira/browse/ARGUS-74
>             Project: Argus
>          Issue Type: Bug
>            Reporter: Velmurugan Periasamy
>            Assignee: Selvamohan Neethiraj
>
> Steps to reproduce
> 1] Create an internal user and make the user delegated admin of any policy. 
> 2] Login with that user and try to read different different policies from URL.
> Expected Result : User should be allowed to read only policies for which user 
> has delegated admin rights.
> Actual Result : User can read all the policies from URL. Also User can see 
> all policies in a repository as long as user has admin permission to any one 
> policy in that repository (happens in both UI and API)



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (ARGUS-74) Delegated admin can access all the policies through URL

Reply via email to