View Issue Details

This bug affects 1 person(s).
 6
IDProjectCategoryView StatusLast Update
05510Bug reportsAuthenticationpublic2012-03-14 21:08
ReporterDenisChenu Assigned Toaniesshsethh  
PrioritynormalSeverityminor 
Status closedResolutionfixed 
Product Version2.00a1 
Target Version2.00a1 
Summary05510: SuperAdmin don't have all the right
Description

You can have a superadmin who can't :

  • Use partcipant panel
  • Create survey
  • Configurator ....
Steps To Reproduce

Connect with the first administrator
Create a user
Set is right to superadmin and deactivate all other right.

Connect with the new superadmin:
he have no right .... he can only try add new users but : No permissions

Additional Information

See:
http://bugs.limesurvey.org/view.php?id=5509

And the patch:

  • $this->session->set_userdata('USER_RIGHT_CREATE_SURVEY', $fields['create_survey']);
  • $this->session->set_userdata('USER_RIGHT_PARTICIPANT_PANEL', $fields['participant_panel']);
  • $this->session->set_userdata('USER_RIGHT_CONFIGURATOR', $fields['configurator']);
  • $this->session->set_userdata('USER_RIGHT_CREATE_USER', $fields['create_user']);
  • $this->session->set_userdata('USER_RIGHT_DELETE_USER', $fields['delete_user']);
  • $this->session->set_userdata('USER_RIGHT_MANAGE_TEMPLATE', $fields['manage_template']);
  • $this->session->set_userdata('USER_RIGHT_MANAGE_LABEL', $fields['manage_label']);
  • $this->session->set_userdata('USER_RIGHT_CREATE_SURVEY', ($fields['create_survey'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_PARTICIPANT_PANEL', ($fields['participant_panel'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_CONFIGURATOR', ($fields['configurator'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_CREATE_USER', ($fields['create_user'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_DELETE_USER', ($fields['delete_user'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_MANAGE_TEMPLATE', ($fields['manage_template'] || $fields['superadmin']));
  • $this->session->set_userdata('USER_RIGHT_MANAGE_LABEL', ($fields['manage_label'] || $fields['superadmin']));

Another solution and maybe do the 2 solution:
When update user righ, if user aresuperadmin then put all other right to TRUE in database

Assign it to me if you want.

TagsNo tags attached.
Bug heat6
Complete LimeSurvey version number (& build)11160
I will donate to the project if issue is resolvedNo
Browsernot relevant
Database type & versionMysql 5.2
Server OS (if known)debian/linux
Webserver software & version (if known)apache
PHP Version5.3

Users monitoring this issue

There are no users monitoring this issue.

Activities

Mazi

Mazi

2011-10-14 12:34

updater   ~16418

ulle, as far as I can see, this is no CPDB issue. If I get this reight, all we need to do is uncheck the "superadmin" checkbox once one of the other rights checkboxs get unchecked, correct?

Can you do so?

DenisChenu

DenisChenu

2011-10-14 14:39

developer   ~16419

superadmin checked => all checked, and "readonly" in JS maybe. But it's more simple to do in SQL update, i see for js.
superadmin unchecked => no change

aniesshsethh

aniesshsethh

2011-10-14 16:39

reporter   ~16424

fixed and committed

Related Changesets

LimeSurvey: Yii bd3a3633

2011-10-14 07:23:48

aniesshsethh

Details Diff
Fixed issue 05510 : SuperAdmin don't have all the right
Dev fixed the js file include as well as jQuery problem

git-svn-id: file:///Users/Shitiz/Downloads/lssvn/source/limesurvey_ci@11165 b72ed6b6-b9f8-46b5-92b4-906544132732
Affected Issues
05510
mod - application/controllers/admin/user.php Diff File
mod - scripts/admin/users.js Diff File

LimeSurvey: Yii 0e3e6a12

2011-10-15 02:02:42

DenisChenu

Details Diff
Dev : Fixed issue 05510 in php
Dev: a user can deactivate some rights for sueradmin : just acces to user right page, deactivate javascript, relaod page and go. Php control more.

git-svn-id: file:///Users/Shitiz/Downloads/lssvn/source/limesurvey_ci@11171 b72ed6b6-b9f8-46b5-92b4-906544132732
Affected Issues
05510
mod - application/controllers/admin/user.php Diff File
mod - application/core/Admin_Controller.php Diff File

Issue History

Date Modified Username Field Change
2011-10-14 11:45 DenisChenu New Issue
2011-10-14 11:45 DenisChenu Additional Information Updated
2011-10-14 11:46 DenisChenu Assigned To => aniesshsethh
2011-10-14 11:46 DenisChenu Status new => assigned
2011-10-14 12:34 Mazi Assigned To aniesshsethh => DenisChenu
2011-10-14 12:34 Mazi Note Added: 16418
2011-10-14 14:39 DenisChenu Note Added: 16419
2011-10-14 16:39 aniesshsethh Note Added: 16424
2011-10-14 16:39 aniesshsethh Status assigned => closed
2011-10-14 16:39 aniesshsethh Assigned To DenisChenu => aniesshsethh
2011-10-14 16:39 aniesshsethh Resolution open => fixed
2012-03-14 21:08 DenisChenu Changeset attached => Import 2012-03-09 13:30:34 Yii 0e3e6a12
2012-03-14 21:08 aniesshsethh Changeset attached => Import 2012-03-09 13:30:34 Yii bd3a3633