Public access discriptor is deceptive

Steps to reproduce

When editing the ACL for a series there is a selector for:

Public (no authorization required)

The rights given by this are slightly deceptive and will lead to unexpected consequences for Administrators as it grants the ROLE_ANONYMOUS access to the series. As a result ordinary authenticated users won't see the recordings as they don't have the ROLE_ANONYMOUS

either the permission check needs to change so that ROLE_USERS can see these or that label needs to be more specific. I suggest the former (that role_anon grants rights to role_user)

Status

Assignee

Tobias Wunden

Reporter

David Horwitz

Severity

Incorrectly Functioning With Workaround

Tags (folksonomy)

None

Components

Fix versions

Affects versions

1.3

Priority

Critical