Description
ACL ignores user groups.
Steps to reproduce
create user TestUser
create group TestGroup
create page TestPage with #acl TestGroup:read -All:read
You are not allowed to view this page.
Pero, when I added directly TestUser to ACL: #acl TestUser,TestGroup:read -All:read the page is accessible for TestUser
Example
My ACL configuration:
acl_enabled = 1
acl_rights_before = "DpGroup:read,write,delete,revert RadomirsCirskis:read,write,
delete,revert,admin"
acl_rights_after = ""
acl_rights_default = ""https://moin.datapro.lv/TestGroup
* TestUser
https://moin.datapro.lv/TestPage
Before:
#acl TestGroup:read -All:read TestPage TestPage TestPage TestPage TestPage TestPage TestPage
After:
#acl TestUser,TestGroup:read -All:read TestPage TestPage TestPage TestPage TestPage TestPage TestPage
Details
MoinMoin Version |
moin 1.3.1 (patch-434) |
OS and Version |
Red Hat Linux 3.2.2-5) |
Python Version |
2.4 |
Server Setup |
standalone (intranet) |
Server Details |
proxypath through Apache 1.3 with SSL |
Discussion
Duplicate of MoinMoinBugs/AclChangesNotAlwaysAccepted
Plan
- Priority:
- Assigned to:
Status: Duplicate of MoinMoinBugs/AclChangesNotAlwaysAccepted