You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@archiva.apache.org by "Allan G. Ramirez (JIRA)" <ji...@codehaus.org> on 2009/01/05 04:02:19 UTC
[jira] Created: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
-----------------------------------------------------------------------------------------------
Key: MRM-1057
URL: http://jira.codehaus.org/browse/MRM-1057
Project: Archiva
Issue Type: Bug
Components: Users/Security
Affects Versions: 1.1.2
Environment: Windows XP (I haven't tried it in linux)
Reporter: Allan G. Ramirez
Priority: Minor
Steps to reproduce:
1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
2. Security Alert page is displayed. Click "Go Ahead Login"
3. Login as admin
4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Maria Odea Ching (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Maria Odea Ching updated MRM-1057:
----------------------------------
Fix Version/s: (was: 1.2-M2)
1.2
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Assignee: Maria Odea Ching
> Priority: Minor
> Fix For: 1.2
>
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Updated: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Brett Porter (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Brett Porter updated MRM-1057:
------------------------------
Fix Version/s: 1.2-M2
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Assignee: Maria Odea Ching
> Priority: Minor
> Fix For: 1.2-M2
>
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Gwen Harold Autencio (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=160775#action_160775 ]
Gwen Harold Autencio commented on MRM-1057:
-------------------------------------------
Replicated this in continuum. Filed http://jira.codehaus.org/browse/REDBACK-188 for this issue.
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Priority: Minor
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Closed: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Maria Odea Ching (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Maria Odea Ching closed MRM-1057.
---------------------------------
Resolution: Fixed
Verified as fixed after upgrading Redback to 1.2-SNAPSHOT
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Assignee: Maria Odea Ching
> Priority: Minor
> Fix For: 1.2-M2
>
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Commented: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Maria Odea Ching (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=162880#action_162880 ]
Maria Odea Ching commented on MRM-1057:
---------------------------------------
REDBACK-188 is already resolved but the fix is not yet included in the latest release of Redback (1.2-beta-2) as of this writing.
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Assignee: Maria Odea Ching
> Priority: Minor
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] Assigned: (MRM-1057) Archiva user-admin should be able to
view useredit after logging in from "Security Alert" page
Posted by "Maria Odea Ching (JIRA)" <ji...@codehaus.org>.
[ http://jira.codehaus.org/browse/MRM-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Maria Odea Ching reassigned MRM-1057:
-------------------------------------
Assignee: Maria Odea Ching
> Archiva user-admin should be able to view useredit after logging in from "Security Alert" page
> -----------------------------------------------------------------------------------------------
>
> Key: MRM-1057
> URL: http://jira.codehaus.org/browse/MRM-1057
> Project: Archiva
> Issue Type: Bug
> Components: Users/Security
> Affects Versions: 1.1.2
> Environment: Windows XP (I haven't tried it in linux)
> Reporter: Allan G. Ramirez
> Assignee: Maria Odea Ching
> Priority: Minor
>
> Steps to reproduce:
> 1. Log out of Archiva, and go to http://localhost:9091/security/useredit.action?username=someuser
> 2. Security Alert page is displayed. Click "Go Ahead Login"
> 3. Login as admin
> 4. Url shows login success http://localhost:9091/security/useredit!edit.action?externalResult=security-login-success but Security Alert Page is still displayed
> 5. Going to http://localhost:9091 and you can see that the user is already logged in.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira