Bug #2684

User can't set his own UserProfile fields

Added by Davide Principi over 6 years ago. Updated over 6 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:nethserver-base
Target version:v6.5-final
Security class: Resolution:
Affected version:v6.5-rc1 NEEDINFO:No

Description

When saving UserProfile UI form the following dialog appears

Nethgui:

    403 - Forbidden [1327681977]

In /var/log/messages:

Mar  4 14:55:17 nethservice httpd-admin: [ERROR] Nethgui\Framework: [1322149191] \
  rule#1327570195: Deny access to everyone on everything (score = 0.00) :: AppliedTo \
  :: subject `<USERNAME>` resource `Nethgui\System\EsmithDatabase:accounts` action `WRITE`


Related issues

Related to Nethgui - Feature #2688: Database fine grained authorization CLOSED

Associated revisions

Revision 661ee1c1
Added by Davide Principi over 6 years ago

Allow authenticated users to modify Accounts DB. Refs #2684

The permission granted is too large and must be restricted when #2688
is implemented.

History

#1 Updated by Davide Principi over 6 years ago

  • Status changed from TRIAGED to ON_DEV
  • Assignee set to Davide Principi
  • % Done changed from 20 to 30

#2 Updated by Davide Principi over 6 years ago

  • Status changed from ON_DEV to MODIFIED
  • Assignee deleted (Davide Principi)
  • % Done changed from 30 to 60

#3 Updated by Davide Principi over 6 years ago

  • Status changed from MODIFIED to ON_QA
  • % Done changed from 60 to 70

In nethserver-testing:
nethserver-base-2.1.1-2.0git661ee1c1.ns6.noarch.rpm

#4 Updated by Giacomo Sanchietti over 6 years ago

  • Assignee set to Giacomo Sanchietti

#5 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 70 to 90

Login with user giacomo and edit Company property:

...
Mar  6 16:57:59 localhost httpd-admin: [NOTICE] Nethgui\Module\Login: user giacomo logged in
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: OLD giacomo=user|City||Company||Department||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: NEW giacomo=user|City||Company|MyCompany|Department||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: OLD giacomo=user|City||Company|MyCompany|Department||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: NEW giacomo=user|City||Company|MyCompany|Department||Dept||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: OLD giacomo=user|City||Company|MyCompany|Department||Dept||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: NEW giacomo=user|City||Company|MyCompany|Department||Dept||EmailAddress||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: OLD giacomo=user|City||Company|MyCompany|Department||Dept||EmailAddress||FirstName|giacomo|LastName|giacomo|PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost /sbin/e-smith/db[16937]: /var/lib/nethserver/db/accounts: NEW giacomo=user|City||Company|MyCompany|Department||Dept||EmailAddress||FirstName|giacomo|LastName|giacomo|Phone||PhoneNumber||Street||Uid|5000|__state|active
Mar  6 16:58:09 localhost esmith::event[16939]: Event: profile-modify giacomo
Mar  6 16:58:09 localhost esmith::event[16939]: Action: /etc/e-smith/events/profile-modify/S30nethserver-base-mail-aliases SUCCESS [0.002987]
Mar  6 16:58:09 localhost esmith::event[16939]: [INFO] service postfix reload
Mar  6 16:58:09 localhost esmith::event[16939]: Reloading postfix: [  OK  ]#015
Mar  6 16:58:09 localhost esmith::event[16939]: Action: /etc/e-smith/events/actions/adjust-services SUCCESS [0.1283]
Mar  6 16:58:09 localhost esmith::event[16939]: Event: profile-modify SUCCESS
...

[root@localhost ~]# db accounts show giacomo 
giacomo=user
    City=
    Company=MyCompany
    Department=
    Dept=
    EmailAddress=
    FirstName=giacomo
    LastName=giacomo
    Phone=
    PhoneNumber=
    Street=
    Uid=5000
    __state=active

Marking as VERIFIED.

#7 Updated by Davide Principi over 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100

In nethserver-updates:
nethserver-base-2.1.2-1.ns6.noarch.rpm
nethserver-mail-server-1.6.3-1.ns6.noarch.rpm

Also available in: Atom PDF