Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error if SubAdmin changes Attributes in the User Overview #28110

Closed
haukman opened this issue Jun 9, 2017 · 5 comments
Closed

Error if SubAdmin changes Attributes in the User Overview #28110

haukman opened this issue Jun 9, 2017 · 5 comments
Labels
settings:users status/STALE Type:Bug
Milestone
maybe some day

Comments

@haukman
Copy link

haukman commented Jun 9, 2017

Steps to reproduce

  1. Setting user X (not a regular admin) as groudAdmin for Group XY
  2. User X logs in to the WebUI and goes to "Users"
  3. User X tries to change the attributes shown in the user overview (last login, user backend...)
  4. ownCloud won´t take these changes and print an error "Problem loading page"

We had a look at this with @butonic and it´s not allowed for a "SubAdmin" to change these values only a regular admin can do this. We temporarly fixed this as we changed the permissions to the SubAdmin

Expected behaviour

This needs to be defined -> Should an SubAdmin have the right to change these Values? @pmaier1

Actual behaviour

Tell us what happens instead

Server configuration

Operating system:

Web server:

Database:

PHP version:

ownCloud version: (see ownCloud admin page)
10.0.1

Updated from an older ownCloud or fresh install:
Updated

Where did you install ownCloud from:
Tar

Signing status (ownCloud 9.0 and above):
All good

Login as admin user into your ownCloud and access 
http://example.com/index.php/settings/integrity/failed 
paste the results into https://gist.github.com/ and puth the link here.

The content of config/config.php:

Log in to the web-UI with an administrator account and click on
'admin' -> 'Generate Config Report' -> 'Download ownCloud config report'
This report includes the config.php settings, the list of activated apps
and other details in a well sanitized form.

or 

If you have access to your command line run e.g.:
sudo -u www-data php occ config:list system
from within your ownCloud installation folder

*ATTENTION:* Do not post your config.php file in public as is. Please use one of the above
methods whenever possible. Both, the generated reports from the web-ui and from occ config:list
consistently remove sensitive data. You still may want to review the report before sending.
If done manually then it is critical for your own privacy to dilligently
remove *all* host names, passwords, usernames, salts and other credentials before posting.
You should assume that attackers find such information and will use them against your systems.

List of activated apps:

If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your ownCloud installation folder.

Are you using external storage, if yes which one: local/smb/sftp/...

Are you using encryption: yes/no

Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...

LDAP configuration (delete this part if not used)

With access to your command line run e.g.:
sudo -u www-data php occ ldap:show-config
from within your ownCloud installation folder

Without access to your command line download the data/owncloud.db to your local
computer or access your SQL server remotely and run the select query:
SELECT * FROM `oc_appconfig` WHERE `appid` = 'user_ldap';


Eventually replace sensitive data as the name/IP-address of your LDAP server or groups.

Client configuration

Browser:

Operating system:

Logs

Web server error log

Insert your webserver log here

ownCloud log (data/owncloud.log)

Insert your ownCloud log here

Browser log

Insert your browser log here, this could for example include:

a) The javascript console log
b) The network log 
c) ...
@PVince81
Copy link
Contributor

As far as I remember these values are global for all users, so letting a subadmin use them would affect all other admins, which isn't good.

Ideal would be to make those values be user preferences (oc_preferrences) instead of global ones, in which case every admin can decide for themselves what they want to see visible.

@PVince81 PVince81 added this to the triage milestone Jun 20, 2017
@ownclouders
Copy link
Contributor

Hey, this issue has been closed because the label status/STALE is set and there were no updates for 7 days. Feel free to reopen this issue if you deem it appropriate.

@PVince81 PVince81 reopened this Dec 20, 2017
@ownclouders
Copy link
Contributor

Hey, this issue has been closed because the label status/STALE is set and there were no updates for 7 days. Feel free to reopen this issue if you deem it appropriate.

(This is an automated comment from GitMate.io.)

@PVince81 PVince81 reopened this Jan 29, 2018
@ownclouders
Copy link
Contributor

Hey, this issue has been closed because the label status/STALE is set and there were no updates for 7 days. Feel free to reopen this issue if you deem it appropriate.

(This is an automated comment from GitMate.io.)

@PVince81 PVince81 reopened this Mar 9, 2018
@PVince81 PVince81 modified the milestones: triage, maybe some day May 22, 2018
@stale
Copy link

stale bot commented Sep 21, 2021

This issue has been automatically closed.

@stale stale bot closed this as completed Sep 21, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
settings:users status/STALE Type:Bug
Projects
None yet
Milestone
maybe some day
Development

No branches or pull requests
4 participants
@PVince81 @felixboehm @haukman @ownclouders