Uploaded image for project: 'Opencast'
  1. MH-12967

WOH duplicate-event does not work for unprivileged users

    Details

    • Severity:
      Incorrectly Functioning Without Workaround
    • Steps to reproduce:
      Hide
      Steps to reproduce:
      1. Create an unprivileged user Bob (roles: ROLE_ADMIN_UI, ROLE_UI_*)
      2. Login as Bob
      3. Duplicate an existing event (Events->Actions->Start Task->Duplicate)
       
       Actual Results:
      The workflow fails because WOH duplicate-event fails to create a snapshot of the duplicated event(s).
       
       Expected Results:
      The workflow should work in means of WOH duplicate-event succeeds to create the duplicates.

      Analysis:
      WOH duplicate-event fails to create a snapshot of the duplicated event(s). The reason is that the unprivileged user does not have access permissions to the duplicates yet: The ACLs have been duplicated but the authorization service has not yet been told this. That would happen automatically after WOH duplicate-event succeeded. But in this particular case, that is too late.

      There are two ways to address this issue:

      Either a) switch to a privileged system user to call takeSnapshot() or b) manually tell the authorization service the new ACLs for the duplicates.
       
       Workaround (if any):
       None.





      Show
      Steps to reproduce: 1. Create an unprivileged user Bob (roles: ROLE_ADMIN_UI, ROLE_UI_*) 2. Login as Bob 3. Duplicate an existing event (Events->Actions->Start Task->Duplicate)    Actual Results: The workflow fails because WOH duplicate-event fails to create a snapshot of the duplicated event(s).    Expected Results: The workflow should work in means of WOH duplicate-event succeeds to create the duplicates. Analysis: WOH duplicate-event fails to create a snapshot of the duplicated event(s). The reason is that the unprivileged user does not have access permissions to the duplicates yet: The ACLs have been duplicated but the authorization service has not yet been told this. That would happen automatically after WOH duplicate-event succeeded. But in this particular case, that is too late. There are two ways to address this issue: Either a) switch to a privileged system user to call takeSnapshot() or b) manually tell the authorization service the new ACLs for the duplicates.    Workaround (if any):  None.

      TestRail: Results

        Attachments

          Issue links

            Activity

              People

              • Assignee:
                staubesv Sven Stauber
                Reporter:
                staubesv Sven Stauber
              • Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  TestRail: Cases