Author: Lars Michelsen <[email protected]>
Date: Thu Oct 6 16:02:51 2011 +0200
Committer: Lars Michelsen <[email protected]>
Commit-Date: Thu Oct 6 16:02:51 2011 +0200
Bugfix: SQLite Auth DB: Fixed missing permissions for User/setOption
---
ChangeLog | 1 +
share/server/core/classes/CoreSQLiteHandler.php | 12 ++++++++++++
2 files changed, 13 insertions(+), 0 deletions(-)
diff --git a/ChangeLog b/ChangeLog
index e588640..a858ba9 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -4,6 +4,7 @@ Core
* Bugfix: Fixed HTTP redirects in installations using omd_install.sh
* Bugfix: Removed session cookie domain by default
* Bugfix: Installer: Fixed problems copying files with spaces in names
during update
+ * Bugfix: SQLite Auth DB: Fixed missing permissions for User/setOption
* Added NagiosBP backend to connect directly to NagiosBP using the JSON API
Thanks to Bacher Systems (bacher.at) for providing this backend.
diff --git a/share/server/core/classes/CoreSQLiteHandler.php
b/share/server/core/classes/CoreSQLiteHandler.php
index 1625bde..d10431a 100644
--- a/share/server/core/classes/CoreSQLiteHandler.php
+++ b/share/server/core/classes/CoreSQLiteHandler.php
@@ -308,6 +308,9 @@ class CoreSQLiteHandler {
// Access controll: Automap module levels for automap "__automap"
$this->createAutoMapPermissions('__automap');
+ // Access controll: Change user options
+ $this->DB->query('INSERT INTO perms (mod, act, obj) VALUES (\'User\',
\'setOption\', \'*\')');
+
// Access controll: Change own password
$this->DB->query('INSERT INTO perms (mod, act, obj) VALUES
(\'ChangePassword\', \'change\', \'*\')');
@@ -367,6 +370,9 @@ class CoreSQLiteHandler {
// Permit all actions in General module
$this->addRolePerm($data['roleId'], 'General', '*', '*');
+ // Access assignment: Managers => Allowed to update user options
+ $this->addRolePerm($data['roleId'], 'User', 'setOption', '*');
+
// Access assignment: Managers => Allowed to edit/delete all maps
$this->addRolePerm($data['roleId'], 'Map', 'manage', '*');
$this->addRolePerm($data['roleId'], 'Map', 'delete', '*');
@@ -419,6 +425,9 @@ class CoreSQLiteHandler {
// Permit all actions in General module
$this->addRolePerm($data['roleId'], 'General', '*', '*');
+ // Access assignment: Users => Allowed to update user options
+ $this->addRolePerm($data['roleId'], 'User', 'setOption', '*');
+
// Access assignment: Users => Allowed to view the overview
$this->addRolePerm($data['roleId'], 'Overview', 'view', '*');
@@ -455,6 +464,9 @@ class CoreSQLiteHandler {
// Permit all actions in General module
$this->addRolePerm($data['roleId'], 'General', '*', '*');
+ // Access assignment: Guests => Allowed to update user options
+ $this->addRolePerm($data['roleId'], 'User', 'setOption', '*');
+
// Access assignment: Guests => Allowed to view the overview
$this->addRolePerm($data['roleId'], 'Overview', 'view', '*');
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2dcopy1
_______________________________________________
Nagvis-checkins mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/nagvis-checkins
