[RTFACT-19776] The /api/security/users/<username> API returns false information in the Admin field - JFrog JIRA

XML

Word

Printable

Details

Type: Bug
Status: Done
Resolution: Done
Affects Version/s: None
Fix Version/s: 7.0.0
Component/s: None
Labels:
- UGA

Severity:
Critical

Description

If a user was granted with admin privileges from a group (i.e. let's say shlomi is part of a group named Product that is configured with Admin privileges), when executing GET /api/security/users/<username>

You will get the following response:

{
 "name" : "shlomi",
 "email" : "a@a.a",
 "admin" : false,
 "profileUpdatable" : true,
 "internalPasswordDisabled" : false,
 "groups" : [ "bla" ],
 "lastLoggedInMillis" : 0,
 "realm" : "internal",
 "offlineMode" : false,
 "disableUIAccess" : false
}

You can see that "admin" : false while the user is an admin user.

We should fix it so if a user got admin privileges from one or more groups he is associated with, the admin flag should be true.

Attachments

Activity

People

Assignee:: Uriah Levy

Reporter:: Shlomi Kriheli (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 29/Jul/19 11:21 PM

Updated:: 06/Jan/21 4:27 PM

Resolved:: 15/Oct/19 7:44 AM

Sync Status

Connection: RTFACT Sync

RTMID-19776 -
SYNCHRONIZED

Last Sync Date: