[
https://issues.apache.org/jira/browse/OFBIZ-11342?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17035170#comment-17035170 ]
ASF subversion and git services commented on OFBIZ-11342:
---------------------------------------------------------
Commit 73b7abbdd0ab150a646415fd5c10f9e05b55c286 in ofbiz-framework's branch refs/heads/release17.12 from Gil Portenseigne
[
https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=73b7abb ]
Fixed: Error in user impersonation with sub permission
(OFBIZ-11342)
Add unit tests for permission control feature.
Add new method to manage multilevel permission control.
This allowing an user with PARTYMGR_ADMIN permission to impersonate
another user with PARTYMGR_PCM_CREATE permission.
> Error in user impersonation with sub permission
> -----------------------------------------------
>
> Key: OFBIZ-11342
> URL:
https://issues.apache.org/jira/browse/OFBIZ-11342> Project: OFBiz
> Issue Type: Bug
> Components: framework
> Affects Versions: Upcoming Branch, Release Branch 17.12, Release Branch 18.12
> Reporter: Gil Portenseigne
> Assignee: Gil Portenseigne
> Priority: Minor
> Attachments: 0001-Add-a-new-unit-test-to-validate-adminPermissionTesti.patch, 0002-Add-a-new-test-for-multi-level-permission.patch, 0003-Implements-multiLevel-permission-control.patch
>
>
> When impersonating user with sub permission such as : PARTYMGR_PCM_CREATE, with an admin user that only has PARTYMGR_ADMIN, the impersonation is refused stating that the impersonated user has more permission than the impersonator.
>
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
Locked
