-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 6.1 EE GA3 (6.1.30)
-
Fix Version/s: 6.1.X EE
-
Component/s: Application Security
-
Fix Pack Version/s:
Following are the steps to reproduce this issue.
1. Login as the super administrator, create a new user “admin” and create a new organization “organization”.
2. Add user “admin” to the organization “organization” and assign the “Organization Administrator” role to “admin”.
3. Create a new organization role “role1” that contain any permission, add another user “user1” to the organization “organization” and assign “role1” to the user “user1”.
4. Log out the super administrator and login the portal using “admin”.
5. Go to Control Panel > Portal > Users and Organization, click on the specified organization and then click on “user1”.
6. Navigate to User Information > Roles, press “F12” in the Mozilla Firefox explorer and change the values of “_2_organizationRolesSearchContainerPrimaryKeys” and “_2_groupRolesRoleIds” to the ones of the “Organization Owner” role.
7. Click Save in the GUI.
[Expected Result] The organization role of “user1” does not change.
[Actual Result] The organization role of “user1” changes from “role1” to “Organization Owner”.