#4228 Ordinary user has rights to change otptoken owner
Closed: Fixed None Opened 8 years ago by pvoborni.

Web UI receives write right in attributelevelrights for ipatokenowner:
- "ipatokenowner": "rscwo",

It tells the UI to display edit interface for this attribute.

IMO non-admin user should be able just to add his own token and not to assign his existing ones to different users.

Atm the result of this operations presents itself as Internal Error (which is wrapped MidairCollision) because of #4227.

[Thu Mar 06 15:59:04.947841 2014] [:error] [pid 2314] ipa: ERROR: non-public: ValueError: non-generic 'MidairCollision' needs format=None; got format=Gettext('the entry was deleted while being modified', domain='ipa', localedir=None)
[Thu Mar 06 15:59:04.947892 2014] [:error] [pid 2314] Traceback (most recent call last):
[Thu Mar 06 15:59:04.947898 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipaserver/rpcserver.py", line 343, in wsgi_execute
[Thu Mar 06 15:59:04.947903 2014] [:error] [pid 2314]     result = self.Command[name](*args, **options)
[Thu Mar 06 15:59:04.947906 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 436, in __call__
[Thu Mar 06 15:59:04.947911 2014] [:error] [pid 2314]     ret = self.run(*args, **options)
[Thu Mar 06 15:59:04.947914 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 755, in run
[Thu Mar 06 15:59:04.947918 2014] [:error] [pid 2314]     result = self.execute(*args, **options)
[Thu Mar 06 15:59:04.947922 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipalib/plugins/baseldap.py", line 1350, in execute
[Thu Mar 06 15:59:04.947926 2014] [:error] [pid 2314]     format=_('the entry was deleted while being modified')
[Thu Mar 06 15:59:04.947930 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipalib/errors.py", line 247, in __init__
[Thu Mar 06 15:59:04.947934 2014] [:error] [pid 2314]     messages.process_message_arguments(self, format, message, **kw)
[Thu Mar 06 15:59:04.947938 2014] [:error] [pid 2314]   File "/usr/lib/python2.7/site-packages/ipalib/messages.py", line 52, in process_message_arguments
[Thu Mar 06 15:59:04.947942 2014] [:error] [pid 2314]     name, format)
[Thu Mar 06 15:59:04.947946 2014] [:error] [pid 2314] ValueError: non-generic 'MidairCollision' needs format=None; got format=Gettext('the entry was deleted while being modified', domain='ipa', localedir=None)
[Thu Mar 06 15:59:04.948239 2014] [:error] [pid 2314] ipa: INFO: [jsonserver_session] jdoe@IDM.LAB.ENG.BRQ.REDHAT.COM: otptoken_mod(u'second', ipatokenowner=u'bdeer', rights=True, all=True): ValueError

This ticket is not complete yet, moving to next month milestone.

master:

  • 9885125 Add support for managedBy to tokens

Metadata Update from @pvoborni:
- Issue assigned to npmccallum
- Issue set to the milestone: FreeIPA 4.0 - 2014/06

5 years ago

Login to comment on this ticket.

Metadata