[Zope] weird permission trouble on acl_users on 2.3.3
Dieter Maurer
dieter@handshake.de
Tue, 24 Jul 2001 21:20:40 +0200 (CEST)
Didier Georgieff writes:
> Some weird problem (reproductible) on acl_users.
>
> 1 - create a test role (TESTROLE) with ALL the permissions
> (equivalent to manager).
>
> 2 - Create a user on the root acl_users (called TEST with the
> TESTROLE).
>
> The symptom :
>
> A - log with MANAGER role, you have access to all acl_users tabs
> (including CONTENTS where you can add users)
>
> B - log as TEST with TESTROLE role, you have access to all
> acl_users tabs EXCLUDING CONTENTS and you can't add users)
>
> This is also true in acl_users folder within sub-folders.
Using my "DocFinder" product
URL:http://www.dieter.handshake.de/pyprojects/zope/DocFinder.html
shows you that "manage_main" is not protected by
a permission ("Manage users") but has an explicit role
assignment of "Manager".
This probably is not intended. But a report into the
Collector.
Dieter