Uploaded image for project: 'COmanage'
  1. COmanage
  2. CO-226

Controllers check for subadmin instead of couadmin and related authz fixes

    XMLWordPrintable

Details

    Description

      Several Controller's isAuthorized() method are checking 'subadmin' when they should actually check 'couadmin' for a role within the current CO. This allows a COU admin in CO 2 to (eg) see the people in CO 3 even though the COU admin has no relation to CO 3.

      Attachments

        Issue Links

          depends on

          Bug - A problem which impairs or prevents the functions of the product. CO-239 couadmin not properly calculated

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Activity

            People

              benn.oshrin@at.internet2.edu Benn Oshrin (internet2.edu)
              benn.oshrin@at.internet2.edu Benn Oshrin (internet2.edu)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: