[CKAN-support] Request received: Possible security weakness?

• Previous message: [CKAN-support] Request received: Possible security weakness?
• Next message: [CKAN-support] [Open Knowledge] Update: RE: [Open Knowledge Foundation] Update: Re: Groups and home page design
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Another twist re groups:

Testmember used to be a member of group ‘Fungi and Bacteria’, but as Sysadmin I removed them.  However when Testmember goes to their ‘MyGroups’ tab, it shows them as members of ‘Fungi and Bacteria’(amongst others I have removed them from).

If testmember opens a dataset, goes to the groups tab, then they are still offered the choice of groups they are no longer members of to add a dataset too.  When they try to complete the adding of the dataset to a group they no longer belong to it fails (Server Error).

Once removed from a group membership they should no longer see that group on their My Groups dashboard tab, nor should they be offered that group as one they can add a dataset too.

Cheers
Aaron

From: support at ckan.org [mailto:support at ckan.org]
Sent: Wednesday, 27 August 2014 1:22 p.m.
To: Aaron McGlinchy
Subject: Request received: Possible security weakness?

##- Please type your reply above this line -##

Hi Aaron,

Thank you for contacting us.

We strive to respond to all e-mail enquiries as soon as possible.

Thank you for your patience and best wishes!
This email is a service from Open Knowledge. Delivered by Zendesk<http://www.zendesk.com/help-desk-software/?utm_medium=poweredbyzendesk&utm_source=email-notification&utm_campaign=text>.
Message-Id:EAXN2FNB_53fd32b1226d4_6d2f3fd6d2eb3320242804f_sprut

________________________________

Please consider the environment before printing this email
Warning: This electronic message together with any attachments is confidential. If you receive it in error: (i) you must not read, use, disclose, copy or retain it; (ii) please contact the sender immediately by reply email and then delete the emails.
The views expressed in this email may not be those of Landcare Research New Zealand Limited. http://www.landcareresearch.co.nz
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.okfn.org/mailman/private/ckan-support/attachments/20140827/f25b5c98/attachment-0003.html>

• Previous message: [CKAN-support] Request received: Possible security weakness?
• Next message: [CKAN-support] [Open Knowledge] Update: RE: [Open Knowledge Foundation] Update: Re: Groups and home page design
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]