Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-19776

The /api/security/users/<username> API returns false information in the Admin field

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 7.0.0
    • Component/s: None
    • Labels:
    • Severity:
      Critical

      Description

      If a user was granted with admin privileges from a group (i.e. let's say shlomi is part of a group named Product that is configured with Admin privileges), when executing GET /api/security/users/<username>

      You will get the following response: 

      {
 "name" : "shlomi",
 "email" : "a@a.a",
 "admin" : false,
 "profileUpdatable" : true,
 "internalPasswordDisabled" : false,
 "groups" : [ "bla" ],
 "lastLoggedInMillis" : 0,
 "realm" : "internal",
 "offlineMode" : false,
 "disableUIAccess" : false
}

      You can see that "admin" : false while the user is an admin user. 

      We should fix it so if a user got admin privileges from one or more groups he is associated with, the admin flag should be true.

        Attachments

          Activity

              People

              Assignee:
              uriahl Uriah Levy
              Reporter:
              krihelis Shlomi Kriheli (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: