Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0013484 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| defect | [Openbravo ERP] 01. General setup | major | always | 2010-05-31 13:08 | 2010-07-16 00:00 | |||
| Reporter | rafaroda | View Status | public | |||||
| Assigned To | harikrishnan | |||||||
| Priority | high | Resolution | fixed | Fixed in Version | ||||
| Status | closed | Fix in branch | Fixed in SCM revision | 8b98f543308c | ||||
| Projection | none | ETA | none | Target Version | 2.50MP20 | |||
| OS | Linux 32 bit | Database | PostgreSQL | Java version | 1.5 | |||
| OS Version | Ubuntu 7.10 | Database version | 8.3 | Ant version | 1.7 | |||
| Product Version | 2.50MP17 | SCM revision | ||||||
| Merge Request Status | ||||||||
| Review Assigned To | ||||||||
| OBNetwork customer | OBPS | |||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Support ticket | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0013484: User created on Initial Organization Setup has Client Admin role | |||||||
| Description | On Initial Organization Setup a user is created: it is supposed to be the Organization administrator. Nevertheless, this user is automatically given a Client Administrator role. This could be a security hole specially when different organizations are different companies. | |||||||
| Steps To Reproduce | 1) Perform an Initial Client Setup http://wiki.openbravo.com/wiki/ERP/2.50/Configuration_Manual/Modeling_your_enterprise#Setting_up_a_client [^] 2) Perform an Initial Organization Setup http://wiki.openbravo.com/wiki/ERP/2.50/Configuration_Manual/Modeling_your_enterprise#Setting_up_an_organization [^] 3) Navigate to General Setup || Security || User and select the Organization User created. 4) In user Roles tab see that the user has been assigned the Client Admin role. | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
||||||||
|
||||||||
 Relationships |
|
Notes |
|
|
(0029311) hgbot (developer) 2010-07-14 15:40 |
Repository: erp/devel/pi Changeset: 8b98f543308c77448f62386fb1dfdb04b61fbd52 Author: Harikrishnan Raja <harikrishnan.raja <at> openbravo.com> Date: Wed Jul 14 19:09:09 2010 +0530 URL: http://code.openbravo.com/erp/devel/pi/rev/8b98f543308c77448f62386fb1dfdb04b61fbd52 [^] Fixes Issue 13484: User created on Initial Organization Setup has Client Admin role --- M src/org/openbravo/erpCommon/ad_forms/InitialOrgSetup.java M src/org/openbravo/erpCommon/ad_forms/InitialOrgSetup_data.xsql --- |
|
(0029312) harikrishnan (viewer) 2010-07-14 15:40 |
Steps to test: *Create a client. *Login in to Client created User and create a new organization. *While creating the new organization a user is created with the new user role. *The role user level is organization level. Root Cause: *Before the User created by organization is assigned with the Client user role. Impact: *Their is impact through out the core functionality of the organization.They are tested. |
|
(0029327) sureshbabu (viewer) 2010-07-15 10:07 |
verified. |
|
(0029331) hudsonbot (viewer) 2010-07-15 10:18 |
A changeset related to this issue has been promoted to main after passing a series of tests and an OBX has been generated: Changeset: http://code.openbravo.com/erp/devel/main/rev/8b98f543308c [^] Merge Changeset: http://code.openbravo.com/erp/devel/main/rev/33fb2a504aa2 [^] Tests: http://builds.openbravo.com/view/int/ [^] OBX: http://builds.openbravo.com/erp/core/obx/OpenbravoERP-2.50CI.17884.obx [^] |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2010-05-31 13:08 | rafaroda | New Issue | |
| 2010-05-31 13:08 | rafaroda | Assigned To | => psarobe |
| 2010-05-31 13:08 | rafaroda | OBNetwork customer | => No |
| 2010-05-31 13:08 | rafaroda | Relationship added | related to 0013483 |
| 2010-06-28 11:06 | psarobe | Status | new => scheduled |
| 2010-06-28 11:06 | psarobe | Assigned To | psarobe => adrianromero |
| 2010-06-28 11:06 | psarobe | fix_in_branch | => pi |
| 2010-07-05 12:48 | jonalegriaesarte | OBNetwork customer | No => Yes |
| 2010-07-05 12:48 | jonalegriaesarte | Target Version | => 2.50MP21 |
| 2010-07-05 12:48 | jonalegriaesarte | fix_in_branch | pi => |
| 2010-07-05 12:50 | jonalegriaesarte | Target Version | 2.50MP21 => 2.50MP20 |
| 2010-07-14 15:31 | harikrishnan | Assigned To | adrianromero => harikrishnan |
| 2010-07-14 15:40 | hgbot | Checkin | |
| 2010-07-14 15:40 | hgbot | Note Added: 0029311 | |
| 2010-07-14 15:40 | hgbot | Status | scheduled => resolved |
| 2010-07-14 15:40 | hgbot | Resolution | open => fixed |
| 2010-07-14 15:40 | hgbot | Fixed in SCM revision | => http://code.openbravo.com/erp/devel/pi/rev/8b98f543308c77448f62386fb1dfdb04b61fbd52 [^] |
| 2010-07-14 15:40 | harikrishnan | Note Added: 0029312 | |
| 2010-07-15 10:07 | sureshbabu | Note Added: 0029327 | |
| 2010-07-15 10:07 | sureshbabu | Status | resolved => closed |
| 2010-07-15 10:18 | hudsonbot | Checkin | |
| 2010-07-15 10:18 | hudsonbot | Note Added: 0029331 | |
| 2010-07-16 00:00 | anonymous | sf_bug_id | 0 => 3030266 |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |