You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@couchdb.apache.org by "Joan Touzet (JIRA)" <ji...@apache.org> on 2017/07/05 17:19:00 UTC

[jira] [Resolved] (COUCHDB-3170) Permissions are ignored in "_users" database.

     [ https://issues.apache.org/jira/browse/COUCHDB-3170?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Joan Touzet resolved COUCHDB-3170.
----------------------------------
    Resolution: Not A Problem

> Permissions are ignored in "_users" database.
> ---------------------------------------------
>
>                 Key: COUCHDB-3170
>                 URL: https://issues.apache.org/jira/browse/COUCHDB-3170
>             Project: CouchDB
>          Issue Type: Bug
>    Affects Versions: 2.0.0
>            Reporter: Pavel V
>
> To reproduce (in Fauxton):
> 1. Create a user in "_users" database with role "app-admin".
> 2. Change permissions for "_users" DB to add "app-admin" role to admins and members.
> 3. Check "/_users/_security". Response should be similar to:
> {"admins":{"names":[],"roles":["app-admin"]},"members":{"names":[],"roles":["app-admin"]},"ok":true}
> 4. Login as the user with the "app-admin" role.
> 5. Open "_users", you get 401 response and Fauxton shows message "An Error occurred: You are not a server admin.". 401 response contains following JSON:
> {error: "unauthorized", reason: "You are not a server admin."}



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)