Done some more testing now I'm certain I've found further issues; these have only been tested with the "Default XML user/group service"
Create 2 groups: 1. group-1 2. group-2 Create 3 users 1. group-1-user ; member of group-1 ; add role GROUP_ADMIN 2. group-2-user ; member of group-2 3. no-group-user *Issue 1:* Disabling non-group users: - Log in to webGUI as group-1-user (GROUP_ADMIN) - Open group-2-user - Un-tick the "Enabled" check box - Click save -> Error message: "An error occurred while saving the user: User [...] is member of group(s) not administered by current user and cant be modified." - Navigate back to user list (or press "Cancel") - group-2-user now doesn't have the "Enabled" tick and cannot log in *Issue 2:* Changing non-group users passwords (occurred when Password encryption=Digest, didn't affect Strong PBE): - Log in to webGUI as group-1-user (GROUP_ADMIN) - Open group-2-user - Change the password - Click save -> Error message: "An error occurred while saving the user: User [...] is member of group(s) not administered by current user and cant be modified." - Navigate back to user list (or press "Cancel") - group-2-user tries to log on and gets HTTP 500: "No password decoder for" *Issue 3:* No Recode of existing passwords Digest -> Strong PBE - Passwords in users.xml aren't re-encoded going from "Digest" to "Strong PBE" (however going from "Strong PBE" to "Digest" does) *Issue 4:* Delete user not in different groups (unhandled exception) - Log in to webGUI as group-1-user (GROUP_ADMIN) - Check group-2-user and click "Remove Selected" and then confirm - JavaScript "Do you want to leave this site.." warning appears, click "Leave" - Get "Oops, something went wrong..." page *Issue 5:* Delete user not in any groups (maybe not a bug but seems strange) - Log in to webGUI as group-1-user (GROUP_ADMIN) - Check no-group-user and click "Remove Selected" and then confirm - User is deleted -- View this message in context: http://osgeo-org.1560.x6.nabble.com/Possible-bug-GROUP-ADMIN-deleting-users-tp5315691p5316113.html Sent from the GeoServer - User mailing list archive at Nabble.com. ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Geoserver-users mailing list Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users
