Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-28972

Fix redirection after handling a task with temporary permission - HTTP 403

    Details

    • Release Notes Summary:
      The user is redirected to the tasks dashboard after completing a task on document without permission.
    • Backlog priority:
      850
    • Team:
      UI
    • Sprint:
      UI - 2020-07 2, UI - 2020-08

      Description

      The scenario is the following:

      1. login as Administrator
      2. create a user test
      3. create a document MyDoc and block permission inheritance (user test cannot read this document)
      4. start a serial workflow and request user test to validate MyDoc
      5. logout from Administrator and login as test
      6. navigate to the document MyDoc and start the task from the MyDoc page
      7. validate the document in the task form
      8. you are redirected to the latest document displayed before handling the task which is MyDoc to which your temporary permission has been revoked => HTTP 403 is displayed

        Privilege 'Read' is not granted to 'test'

      Expected result: a non-error screen is displayed to the user, such as his home page.

      NXP-27071 does not handle this case.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 15 minutes
                  1d 15m

                    PagerDuty

                    Error rendering 'com.pagerduty.jira-server-plugin:PagerDuty'. Please contact your Jira administrators.