Details

    • Sprint:
      Team B Sprint 32
    • Deployment actions:
      Hide
      Verify app/config/security.yml:

          access_decision_manager:
              strategy: unanimous
      Show
      Verify app/config/security.yml:     access_decision_manager:         strategy: unanimous
    • Team:
      Team B
    • Story Points:
      2

      Description

      Steps

      • Add a (non-administrative) user in a group
      • Add a workflow and add it to a content type
      • Add a read right for the added group, but not a write right
      • Open a document with only read rights
      • Result: the user can write as well
      • Note: even removing the read rights allows the user the write (however the document disappears from the content navigator)

        Attachments

          Issue links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                marijn Marijn Otte
                Code reviewer:
                Michael Jongman
                Developer:
                Jeroen van Leeuwen
                Product owner:
                Marijn Otte
                Client:
                Integrated Marijn
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Due:
                  Created:
                  Updated:
                  Resolved:

                  Draw.io Diagrams

                    OTM