Forum .LRN Q&A: dotlrn-admin priviledges are not revoked


	The Toolkit for Online Communities 13557 Community Members, 0 members online, 1796 visitors today			Log In	Register

Forum .LRN Q&A: dotlrn-admin priviledges are not revoked

OpenACS Home : Forums : .LRN Q&A : dotlrn-admin priviledges are not revoked

Back to .LRN Q&A

Icon of Envelope Request notifications

1: dotlrn-admin priviledges are not revoked

Posted by Emmanuelle Raffenne on 10/29/09 04:34 PM

Hi,

When removing users from the 'dotlrn-admin' group (http://yourserver/dotlrn/admin/dotlrn-admins), the privileges to admin the dotlrn main package are not removed.

The user is removed from the 'dotlrn-admin' group but still has perm to admin dotlrn.

2: Re: dotlrn-admin priviledges are not revoked (response to 1)

Posted by Emmanuelle Raffenne on 11/06/09 12:41 AM

It appears that's not a dotlrn bug but a core one. The script to add a dotlrn admin (packages/dotlrn/www/admin/admin-add-2.tcl) does:

group::add_member -group_id $group_id -user_id $user_id

and the one to remove (packages/dotlrn/www/admin/admin-remove.tcl):

group::remove_member -group_id $group_id -user_id $user_id

It looks like the user is removed from the group but permissions on child objects are not removed or something like that.

3: Re: dotlrn-admin priviledges are not revoked (response to 1)

Posted by Dave Bauer on 11/06/09 12:45 AM

Could be a core bug, or a misunderstanding of core APIs by dotlrn.

We should look into this. Thanks for the reports.

4: Re: dotlrn-admin priviledges are not revoked (response to 1)

Posted by Emmanuelle Raffenne on 12/01/09 10:37 AM

Hi all,

Finally, this was a bug in acs-subsite/tcl/group-procs.tcl (group::remove_member) that has been introduced in OpenACS version 5.4 (dotLRN version 2.4).

I have committed a fix at oacs-5-5 branch and HEAD.

Thanks to Michael who didn't stop until he found where the bug was.

Back to .LRN Q&A