View Issue Details

IDProjectCategoryView StatusLast Update
0001599SOGoBackend Calendarpublic2012-02-13 14:31
Reporterstevenbakker Assigned To 
PrioritynormalSeverityminorReproducibilityalways
Status closedResolutionno change required 
Product Version1.3.11 
Summary0001599: Cannot set ACL for Confidential events to "None"
Description

When creating a new calendar, there's only one ACL entry, "any authenticated user". If I open that and try to set the "Confidential" ACL to "None", it seems to be accepted, but when I re-open the dialog on that ACL I see it has been changed to "View All" again. I can set the public and private ACLs to "None" without a problem.

I've tried setting SOGoCalendarDefaultRoles to (), restart sogo and memcache, but the problem remains.

I see that issue 0001242 looks similar. Was the fix for that included in 1.3.11? If so, it obviously doesn't fix it properly.

TagsNo tags attached.

Activities

francis

francis

2012-02-03 19:04

administrator   ~0003362

I can't reproduce this bug. If SOGoCalendarDefaultRoles is not set, there's no access rights given to new calendars.

stevenbakker

stevenbakker

2012-02-06 13:29

reporter   ~0003367

Apologies, setting SOGoCalendarDefaultRoles to () does indeed fix it for new calendars. However, it won't fix it for existing calendars. There is no way I can set "Confidential" event access to "None" (on any ACL line I create).

francis

francis

2012-02-06 14:27

administrator   ~0003369

SOGoCalendarDefaultRoles doesn't force ACLs, it sets defaults ACLs for new calendars.

Are you using the Web interface or Lightning?

stevenbakker

stevenbakker

2012-02-06 15:13

reporter   ~0003372

Web interface.

As long as SOGoCalendarDefaultRoles is empty when the calendar is created, I can set any access to None.

However, when I initially set up the system, I set SOGoCalendarDefaultRoles to ("PublicViewer", "ConfidentialDandTViewer") [as recommended by the install guide]. Any calendars created while that was in effect will allow the "public" and "private" ACL entry to be set to None, but not the confidential one.

Just as a test, I created a backup of my user's settings, manually edited the backup file to empty the "<default>" ACL for Calendar/personal and then restored the calendar. Sure enough, when I logged in through the web interface and inspected the calendar's ACL, the default entry had None,None,None. I thenb set public to "View All" and save it. When I re-open the ACL entry, public is indeed "View All", but so is confidential, and there's no way to undo that.

I'm not sure whether this is a GUI bug (populating the wrong fields), or something in the backend.

francis

francis

2012-02-08 20:01

administrator   ~0003388

This is a configuration problem. Use "ConfidentialDAndTViewer" (not "ConfidentialDandTViewer").

stevenbakker

stevenbakker

2012-02-08 20:31

reporter   ~0003398

Thanks! The "a" -> "A" change fixes it for any newly created calendar.

Unfortunately, I cannot change it for existing calendars...

ludovic

ludovic

2012-02-08 20:35

administrator   ~0003399

You need to change this manually in the DB. There's no way to change this right now.

Issue History

Date Modified Username Field Change
2012-01-23 16:27 stevenbakker New Issue
2012-02-03 19:04 francis Note Added: 0003362
2012-02-06 13:29 stevenbakker Note Added: 0003367
2012-02-06 14:27 francis Note Added: 0003369
2012-02-06 15:13 stevenbakker Note Added: 0003372
2012-02-08 20:01 francis Note Added: 0003388
2012-02-08 20:06 francis Status new => closed
2012-02-08 20:06 francis Resolution open => no change required
2012-02-08 20:31 stevenbakker Note Added: 0003398
2012-02-08 20:31 stevenbakker Status closed => feedback
2012-02-08 20:31 stevenbakker Resolution no change required => reopened
2012-02-08 20:35 ludovic Note Added: 0003399
2012-02-13 14:31 francis Status feedback => closed
2012-02-13 14:31 francis Resolution reopened => no change required