[ 
https://issues.apache.org/jira/browse/OFBIZ-11342?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17035168#comment-17035168
 ] 

ASF subversion and git services commented on OFBIZ-11342:
---------------------------------------------------------

Commit c73b97eb29ba01e7b1d99725df9aa8b8f230ff7c in ofbiz-framework's branch 
refs/heads/trunk from Gil Portenseigne
[ https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=c73b97e ]

Fixed: Error in user impersonation with sub permission
(OFBIZ-11342)

Add unit tests for permission control feature.
Add new method to manage multilevel permission control.
This allowing an user with PARTYMGR_ADMIN permission to impersonate
another user with PARTYMGR_PCM_CREATE permission.


> Error in user impersonation with sub permission
> -----------------------------------------------
>
>                 Key: OFBIZ-11342
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-11342
>             Project: OFBiz
>          Issue Type: Bug
>          Components: framework
>    Affects Versions: Upcoming Branch, Release Branch 17.12, Release Branch 
> 18.12
>            Reporter: Gil Portenseigne
>            Assignee: Gil Portenseigne
>            Priority: Minor
>         Attachments: 
> 0001-Add-a-new-unit-test-to-validate-adminPermissionTesti.patch, 
> 0002-Add-a-new-test-for-multi-level-permission.patch, 
> 0003-Implements-multiLevel-permission-control.patch
>
>
> When impersonating user with sub permission such as : PARTYMGR_PCM_CREATE, 
> with an admin user that only has PARTYMGR_ADMIN, the impersonation is refused 
> stating that the impersonated user has more permission than the impersonator.
>  
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to