Context Navigation

Modify ↓

#855 closed defect (wontfix)

register a new user should be possible if some part is missing ...

Reported by:	rupert thurner	Owned by:	Matt Good
Priority:	high	Component:	AccountManagerPlugin
Severity:	normal	Keywords:
Cc:		Trac Release:	0.10

Description

what we do

we create instances with a script calling trad-admin initenv

admin permission is added via trac-admin

trac-admin $tracprojpath permission add $adminuid $sysrole

adminuid does NOT get created with htpasswd as the user should set his own password

the effect

$adminuid cannot register himself, as trac complains with "user already exists"
but $adminuid does not show up in the user list (so another admin cannot remove the user)
but $adminuid does not have an email set (so $adminuid cannot reset the password)

what could we do?

is it possible to set the email with the script too?
is it possible to allow registration of the user if he does not show up in the users list?

Attachments (0)

Change History (1)

comment:1 Changed 18 years ago by Matt Good

Resolution:	→ wontfix
Status:	new → closed

Users should not be able to register with a username that has existing permissions to prevent possible permission escalation. You probably want to add default users in the setup script instead (via the htpasswd or htdigest tools). The users can change their password after logging in the first time.

Modify Ticket

Change Properties

Summary:
Type:	Priority:
Component:	Severity:
Keywords:	Cc:	Set your email in Preferences
Trac Release:

Action

leave as closed The owner will remain Matt Good.

reopen The resolution will be deleted. Next status will be 'reopened'.

Add Comment

Your email or username:

E-mail address and name can be saved in the Preferences.

You may use WikiFormatting here.

Attachments ↑ Description ↑

Note: See TracTickets for help on using tickets.

Download in other formats: