Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: High
Fix Version/s: Customer request, 5.1 Maintenance, 5.2 Maintenance
Affects Version/s: 5.1, 5.2
Component/s: Caching, Permissions
Labels:
None

Description

User role/permissions are not updated in Symfony after assigning the user object to a different group, through legacy Admin UI.

steps to reproduce:

optional: create a custom 'testmodule' module with a 'testfunc' function

Module = array( 'name' => 'eZ Test' );
$FunctionList = array(
    'testfunc'    => array()
);

optional: create a custom controller view to verify access and configure necessary routing. sample code:

        public function testAction( )
        {
            $grantStr = $this->getRepository()->hasAccess( 'testmodule', 'testfunc' ) ? 'granted' : 'NOT granted';
            return new Response( 'Access to testmodule/testfunc is: ' . $grantStr );
        }

In the backoffice, grant this policy to the 'editors' role and save.
In the frontend login as editor, access the view configured above.
1. Verify that response is: "Access to testmodule/testfunc is: granted"
In the backoffice, move the editor user to the 'Anonymous group'
1. In the frontend refresh the page: response is still granted.
Clear cache in admin backoffice
1. frontend response is now "NOT granted"

The same problem exists when assigning back to a group with permissions.

Attachments

Issue Links

relates to

EZP-20880 HttpCache purge is not being triggered when permissions change

Closed

EZP-21548 Clear role assignments cache when dealing with locations

Closed

EZP-22317 user/role SPI cache not updated after adding/removing policies in legacy

Closed

Activity

People

Assignee:: Unassigned

Reporter:: Joao Inacio (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 17/Feb/14 6:46 PM

Updated:: 08/Sep/14 6:14 PM

Resolved:: 15/Mar/14 6:48 PM

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

4h 20m