CLONE -Activity Feed displays documents where current user has no access permission
Description
Activity Feed displays documents where current user has no access permission.
test instruction:
create a new site and add another user as SiteConsumer
upload a new document as siteManager
modify permission: set permission of SiteConsumers to none
CheckOut/CheckIn prev. uploaded document to trigger new activity post
login to Share with user invited as SiteConsumer
navigate to my activities mor my site activities
--> manager's modify document activity is contained in SiteConsumers feed even though he has no access permission on this document.
Olgadu
Environment
Alfresco Enterprise v3.5.0 (102), Windows 2008: Tomcat, PostgreSQL, Java 6 (all installer deployed) Client: Windows 7, Firefox 3.6.13
Testcase ID
Team-1814
Activity
[This comment has been reassigned to allreplies@alfresco.com as part of the Alfresco cloud migration project. The author of this comment was srigby] Mike, what should happen here ?
[This comment has been reassigned to allreplies@alfresco.com as part of the Alfresco cloud migration project. The author of this comment was alfrescoqa] Yes, All Other Users permission is set to consumer.
Seems to be the linked issue duplicates this.
[This comment has been reassigned to allreplies@alfresco.com as part of the Alfresco cloud migration project. The author of this comment was srigby] For retest in b183 or later
[This comment has been reassigned to allreplies@alfresco.com as part of the Alfresco cloud migration project. The author of this comment was alfrescoqa] Closed as duplicate of
[This issue has been reassigned to allreplies@alfresco.com as part of the Alfresco cloud migration project. The reporter of this issue was alfrescoqa]
Assignee
Reporter
Labels
Security Severity
Patch Attached
Sprint Number
Documentation required
Documentation Impact
Resource
Regression
Escalation level
Triage
Release Train
Delivery Team
Components
Fix versions
Affects versions
Priority
