[
http://jira.magnolia.info/browse/MAGNOLIA-2392?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18122#action_18122
]
Hudson CI server commented on MAGNOLIA-2392:
--------------------------------------------
Integrated in !http://hudson.magnolia.info/nocacheImages/16x16/blue.gif!
[magnolia_main-trunk
#37|http://hudson.magnolia.info/job/magnolia_main-trunk/37/]
Ensure attempt to assign unallowed privileges doesn't lock out user node
and in a same time log this as attempt to breach security.
> Attempt to assign unallowed group or role corrupts user node
> ------------------------------------------------------------
>
> Key: MAGNOLIA-2392
> URL: http://jira.magnolia.info/browse/MAGNOLIA-2392
> Project: Magnolia
> Issue Type: Sub-task
> Components: admininterface
> Affects Versions: 3.6.2
> Reporter: Jan Haderka
> Assignee: Jan Haderka
> Fix For: 3.6.2, 3.7
>
>
> When user tries to assign themselves extra privileges without having proper
> right to do so, the user node gets corrupted and such user has to be deleted.
> Attempt to do so, should be logged, but user should not be locked out
> completely.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.magnolia.info/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
----------------------------------------------------------------
for list details see
http://documentation.magnolia.info/
----------------------------------------------------------------
