Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Organizations - "Do not have the required permissions" error message after a user updates an organization

Description

If a user has permissions and updates an organization, the user will get a "You do not have the required permissions" error message after clicking Save. However, the changes do save.

  1. Create a User: Test

  2. Update Test's password

  3. Create an Organization: Orgtest

  4. Assign the Organization to the User

  5. Create an Organization Role: Orgrole

  6. Assign Orgrole to Test

  7. Navigate to Control Panel > Roles and click on Actions > Define Permissions for Orgrole

  8. Select Organization Administration in the Add Permissions dropbox and check the following permission under Organization:

    • Manage Users

    • Update

    • View

  9. Click Save

  10. Sign Out and Sign In as user: Test

  11. Navigate to the Control Panel > Users and Organizations and click on Actions > Edit for Orgtest

  12. Update the name to Orgtest2 and click Save

  13. You will get a "You do not have the required permissions" error

  14. Click on Users and Organization, Orgtest has been updated to Orgtest2

Expected: There should not be an error message displayed when the user as Update and View permissions for Organizations

Actual: User gets an error message

Environment

Tomcat 7.0 + MySQL 5. Portal 6.1.x CE GIT ID: f86175dd0f2548ab8a1e1e942004cfb8541f3227. Tomcat 7.0 + MySQL 5. Portal 6.1.x EE GIT ID: 4ebcade5fb26dc43bb4de711cf92af9a43fc4d72. Tomcat 7.0 + MySQL 5. Portal 6.2.x GIT ID: f989619a928f761c5016ed0767651cd0adc9af67.

Attachments

1
  • 07 Jun 2012, 02:04 PM

Activity

Show:

Albert LeeJuly 23, 2012 at 9:49 AM

PASSED Manual Testing following the steps in the description.

Fixed on:
Tomcat 7 + MySQL 5. Portal 6.1.x GIT ID: 09229fa9e7962bbce654d9b64d34bda4cc48d79d.
Tomcat 7 + MySQL 5. Portal 6.2.x GIT ID: 619e48e10c4433a356a5508e34d4d3e32be46620.

Michael SaechangJune 13, 2012 at 9:34 AM
Edited

Committed on:
Portal 6.1.x CE GIT ID: f79ddadf813ef9c22e08d50b15112b1094ef9738.
Portal 6.2.x GIT ID: 0fc144d7d88bf66ad834674dae95155a62734992.

Jorge FerrerJune 12, 2012 at 7:48 AM

I have found out that the root cause for this problem is that the updateOrganization method in the action, after changing the organization properties it also tries to make some changes to the Group (site) associated to the organization. However under the scenario described in this ticket the user does not have permissions to do so, so it fails. The action should be smarter and not try to change the group if the user does not have proper permissions.

The UI should also be modified so that the user cannot create or update the Organization Site properties.

Timothy HsuJune 11, 2012 at 11:00 AM

Caused by https://liferay.atlassian.net/browse/LPS-24868#icft=LPS-24868:
Portal 6.1.x EE GIT ID: 4f29906c774d74b3ea36dd315cc9c69aaef0a9eb.

Fixed
Pinned fields
Click on the next to a field label to start pinning.

Details

Assignee

Reporter

Labels

Branch Version/s

6.1.x

Backported to Branch

Committed

Fix Priority

4

Git Pull Request

Bug Type

Regression Bug

Components

Fix versions

Affects versions

Priority

Zendesk Support

Created June 7, 2012 at 2:04 PM
Updated June 24, 2023 at 3:51 PM
Resolved July 3, 2012 at 3:46 PM

Flag notifications