Description
An admin/superuser can accidentally self-demote using the preferences page and become unable to retake the position.
Steps to reproduce
- Log in as a superuser/admin (not sure which)
- go to the user preferences page
- change account name
You have now demoted yourself, and will be unable to reclaim the name & rank because "This user name already belongs to somebody else."
Example
Component selection
- general
Details
MoinMoin Version |
1.6.0 |
OS and Version |
Red Hat Linux 3.2.3-42 |
Python Version |
2.4 |
Server Setup |
|
Server Details |
|
Language you are using the wiki in (set in the browser/UserPreferences) |
English |
Workaround
You can change the superuser/admin rights in the wikiconfig.py file to make the new username the superuser. If you want your old name back, repeat the trick with the old name.
Discussion
If you setup special functions in the configuration e.g. superuser, acls then you don't want users changing their names. You have to set an other parameter too user_form_disable = ['name'].
A user being able to change his/her name is a feature, not a bug. That one might lose ACL/superuser rights because they are given to some special name is unavoidable and also not a bug.
TODO: check if the "user name already belongs to somebody else" still happens - that's the only bug here then.
Plan
- Priority:
- Assigned to:
- Status: