You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@roller.apache.org by "David Johnson (JIRA)" <no...@atlassian.com> on 2007/07/26 18:00:30 UTC

[Roller-JIRA] Resolved: (ROL-1492) Change users profile and admin permissions feature does not work

     [ http://opensource.atlassian.com/projects/roller/browse/ROL-1492?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

David Johnson resolved ROL-1492.
--------------------------------

    Resolution: Fixed

URL: http://svn.apache.org/viewvc?view=rev&rev=559865
Log:
Fix for ROL-1492 "Change users profile and admin permissions feature does not work"

The problem is caused by the Acegi user-cache. The user's role is changed in the Roller DB, but Acegi is still hanging on to the old user object. So access to the Server Admin page is denied.

There might be a way to flush the Acegi user cache, but I don't think there is much need for this cache and I'd rather not introduce any more Acegi dependencies. So I removed the cache from secrity.xml and that fixes the problem.

> Change users profile and admin permissions feature does not work
> ----------------------------------------------------------------
>
>                 Key: ROL-1492
>                 URL: http://opensource.atlassian.com/projects/roller/browse/ROL-1492
>             Project: Roller
>          Issue Type: Bug
>          Components: User Management
>         Environment: Glassfish/WinXP
>            Reporter: Davis Nguyen
>            Assignee: David Johnson
>             Fix For: 4.0
>
>
> -The "Change users profile and admin permissions" feature does work. A user after updated with administrator privilege can not access Server Admin Page for the first time 
> -The problem will go away after several accesses
> STEPS TO REPRODUCE:
> 1.  Install roller (build dated 07/17/2007) with glassfish v2 version
> 2. Access to roller server > create an admin user and a regular user (eg, name j2eetest)
> 3. Login as admin user > go to "Server Admin Page" > select "User Admin" > j2eetest and edit user j2eetest for the Administrator privilege > save the change
> 4. Re-login as j2eetest user > go to "Server Admin Page" 
> BUG:
>        j2eetest user was denied to access to "Server Admin Page"
>       The problem goes away after a few tries.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://opensource.atlassian.com/projects/roller/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira