Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-86336

A user can shared a document shared with him even though it was marked as it cannot be shared again


    • Fix Priority:
    • Sprint:
      019 - Rattata


      Steps to reproduce the issue:

      1. Create a user test1@liferay.com without any special permission or role.
      2. With admin (test@liferay.com) add a Documents and Media widget to a site and configure it to Show Actions.
      3. Add a document to Documents and Media and set viewable only to the owner (nobody else should see it)
      4. Check that when user test1@liferay.com access to the page containing Documents and Media widget cannot see the document.
      5. With admin (test@liferay.com) share the document with test1@liferay.com,  and mark that the document CANNOT be shared and grant him UPDATE permissions when sharing.
      6. Check that user test1@liferay.com can now see the document. If you see the actions that user can do on the document you'll see that he has the SHARE action even though he was not supposed to be able to share it.


          Issue Links



              • Votes:
                0 Vote for this issue
                0 Start watching this issue


                • Created:
                  Days since last comment:
                  16 weeks, 3 days ago