[jboss-jira] [JBoss JIRA] Commented: (JBPORTAL-1733) CMS admin role hardcoded somewhere
Luc Boudreau (JIRA)
jira-events at lists.jboss.org
Tue Oct 2 11:57:03 EDT 2007
[ http://jira.jboss.com/jira/browse/JBPORTAL-1733?page=comments#action_12379930 ]
Luc Boudreau commented on JBPORTAL-1733:
----------------------------------------
On the last thing to do, I meant :
- - Try to secure the root node : Access Denided
> CMS admin role hardcoded somewhere
> ----------------------------------
>
> Key: JBPORTAL-1733
> URL: http://jira.jboss.com/jira/browse/JBPORTAL-1733
> Project: JBoss Portal
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Portal CMS
> Environment: Any
> Reporter: Luc Boudreau
> Assigned To: Sohil Shah
>
> - Modify platform to use another admin role name
> - Create user with new admin role and old Admin role
> - Change security on root node of CMS and make the new role the manager
> - Change the user's roles by removing the old Admin role
> - Try to manage the root node : Access Denided
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list