You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@airavata.apache.org by "Marcus Christie (Jira)" <ji...@apache.org> on 2019/11/01 14:30:00 UTC
[jira] [Resolved] (AIRAVATA-3248) BUG: The gateway user in Admin
role can view all the SSH keys in personal User Settings
[ https://issues.apache.org/jira/browse/AIRAVATA-3248?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Marcus Christie resolved AIRAVATA-3248.
---------------------------------------
Resolution: Won't Fix
This is working as intended as far as I can tell.
> BUG: The gateway user in Admin role can view all the SSH keys in personal User Settings
> ---------------------------------------------------------------------------------------
>
> Key: AIRAVATA-3248
> URL: https://issues.apache.org/jira/browse/AIRAVATA-3248
> Project: Airavata
> Issue Type: Sub-task
> Components: Django Portal
> Affects Versions: 0.18
> Environment: https://staging.seagrid.org/
> https://django.staging.seagrid.org
> Reporter: Eroma
> Assignee: Marcus Christie
> Priority: Major
> Fix For: 0.19
>
>
> 1. A user in admin group with admin role logs in to PGA
> 2. Navigates to User Settings --> Credential Store
> 3. Can view all the SSH keys in the gateway and can delete any of them (even a key that is not shared with anyone)
> 4. User in admin group can delete any key, users in admin-read-only can view and delete keys that are shared with the group.
> 5. Users in gateway user group only see the keys shared with them
--
This message was sent by Atlassian Jira
(v8.3.4#803005)