Details

    • Type: Service Pack Request
    • Status: Closed (View Workflow)
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 3.4.7, 4.0
    • Fix Version/s: 4.1.1
    • Component/s: CIFS
    • Labels:
      None
    • ACT Numbers:

      15024-39825

      Description

      When an account is disabled the expected behavior is that the access would be forbiden whatever the access protocol is. If disabled the account is not accessible through HTTP as expected but accessible through CIFS. FTP is blocked as expected. It should be the same for all protocols.

      How to reproduce:

      -Install an AOB 4.0.x version.
      -Activate CIFS
      -Create an user in SHARE (would be the same with JSF client).
      -Check that you can access using CIFS and SHARE using the newly created user.
      -Deactivate the newly created detail usin SHARE UI (got to user details and check "disable account").

      • Try to log in SHARE using the disabled user. As expected you can't.
        -Try to mount an "alfreso" drive using CIFS and the disabled user, it works, you can still access Alfresco. The expected result is that you would be blocked, it is not the case.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                closedbugs Closed Bugs
                Reporter:
                pdubois Philippe Dubois [X] (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 2 hours
                  2h