[LPS-17365] Guests can still see restricted Document Library folders, documents - Liferay Issues

XML

Word

Printable

Details

Type: Regression Bug
Status: Closed
Resolution: Duplicate
Affects Version/s: 5.2.X EE, 6.0.12 EE, 6.1.0 CE RC1
Fix Version/s: 5.2.X EE, 6.0.12 EE, 6.1.0 CE RC1
Component/s: Accessibility, Documents & Media, Security Vulnerability
Labels:
None
Environment:
Tomcat 6.0.32 + MYSQL5.0. Firefox 3.6.17. 6.1.x Revision 80737.
Tomcat 6.0.32 + MYSQL5.0. Firefox 3.6.17. 6.0.x Revision 80606.
Tomcat 6.0.32 + MYSQL5.0. Firefox 3.6.17. 6.1.x Revision 80737.

Branch Version/s:

6.0.x, 5.2.x

Description

1. Add Document Library portlet
2. Add a folder, remove guest view permission
3. Add a document to the root (feature not available in 5.2.x), remove guest view permission
4. Log out

Results:
(1) Guest can see the folder with the # of Folder and # of Documents; guest sees "You do not have the required permissions" when clicking in the folder.

(2) Guest can see the restricted documents with size information though the hyperlink to see/download the entry is removed. (In trunk, the information is in the list view).

Attachments

Issue Links

duplicates

LPS-17476 Resources without Guest View Permissions are still Viewable.

Closed

Activity

People

Assignee:: Raymond Auge

Reporter:: Tammy Fong (Inactive)

Participants of an Issue:: JR Houn, Raymond Auge, Tammy Fong

Recent user:: Esther Sanz

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 17/May/11 7:46 PM

Updated:: 25/Nov/16 3:36 AM

Resolved:: 24/May/11 1:55 PM

Days since last comment:: 11 years, 13 weeks, 2 days ago

Packages

Version	Package
5.2.X EE
6.0.12 EE
6.1.0 CE RC1