Issue Details (XML | Word | Printable)

Key: UTIL-20
Type: Bug Bug
Status: Open Open
Priority: Major Major
Assignee: David Peterson
Reporter: David Peterson
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Confluence Extension: Utilities Plugin

SecurityAssistant isn't checking whether global anonymous access is enabled

Created: 30/Mar/06 01:39 AM   Updated: 30/Mar/06 01:39 AM
Component/s: None
Affects Version/s: 1.4.9, 2.0.3, 2.1.3
Fix Version/s: Soon

Time Tracking:
Not Specified


 Description  « Hide
Currently, SecurityAssistant isn't checking if the global 'allow anonymous users' permission is enabled. It is just checking the specific space. Normally this isn't showing up since anonymous users can't access the site anyway, so macros won't get executed. However for other plugins which allow access via other means (eg WebDAV, XML-RPC) this will be a problem.

Confluence 2.x versions should probably hand off responsibility to the PermissionManager. 1.4.x will have to check manually.

 All   Comments   Work Log   Change History      Sort Order: Ascending order - Click to sort in descending order
There are no comments yet on this issue.

Powered by Atlassian JIRA the Professional Issue Tracker. (Professional Edition, Version: 3.13.4-#354) - Bug/feature request - Atlassian news - Contact Administrators