Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

very dangerous group admin bug #8244

Closed
tessus opened this issue Apr 16, 2014 · 8 comments
Closed

very dangerous group admin bug #8244

tessus opened this issue Apr 16, 2014 · 8 comments
Labels
Type:Bug

Comments

@tessus
Copy link

tessus commented Apr 16, 2014

ownCloud 6.0.2 (all other info irrelevant)

The cloud admin creates 2 users:

User Group Group Admin
A G1 G1
B G1,G2 G2

Behold: User A is able to delete user B from the system!

User B is also a group admin and manages other users. All of a sudden his user and his data (which he most likely shared with his own group) is gone. Gone forever.
Even if B were not a group admin, it can't be that user A deletes a user from the system (unless that user was created by A).

User A should only be able to

  • remove a user from the group
  • delete a user, iff that user was created by A and only belonged to the group managed by A (the cloud admin could add this user to another group after the user was created by A)

This is a high risk bug, unless this behavior is intentional.
If this were really the case, nobody could ever use group admins (unless the admin doesn't care about his users' data), which in turn renders the concept of group admins useless.
@LukasReschke
Copy link
Member

That's actually the expected behaviour but I think this is nevertheless worth discussing.

Summoning @karlitschek and @jancborchhardt - what do you think?

@LukasReschke
Copy link
Member

@jancborchardt

@tessus
Copy link
Author

tessus commented Apr 17, 2014

I'm more than happy to discuss this, but it should be obvious: they way it is right now makes it possible to wipe data unintentionally. No matter what, this cannot be the correct behavior.

That's almost the same as giving every user admin rights with the ability to lock out the admin and delete all data. This doesn't seem right.

@Supermathie
Copy link

From the perspective of someone who's recently set up multitenant Owncloud hosting for a few of our customers (and internally, and at home, love it) this is absolutely non-intuitive.

I can see some of the reasoning behind the functionality but it's totally not something that I expected - I thought (OK, yes, without reading the manual) that a Group Admin would be able to admin the group (i.e. assign/unassign users) only.

I don't like it.

@LukasReschke
Copy link
Member

Just as remark: There is every few days somebody in our IRC chat who misunderstood the option too. I believe we should do something here.

@tessus
Copy link
Author

tessus commented Apr 17, 2014

@LukasReschke Not quite sure how somebody could misunderstand the concept of a group admin. It's a user who can administer a group.
But in this case, he can delete users and data outside his group. That's the problem and that's the flaw in the design.

@tessus
Copy link
Author

tessus commented Apr 17, 2014

I hope I don't make the impression that I bad mouth the product. I love ownCloud and it's a great product. But this is really dangerous and unless this is fixed, people should not use group admins.

@jancborchardt
Copy link
Member

Be sure that this is not intended. It just isn’t done yet.

This issue is a duplicate of #1212 – let’s continue there.

@tessus tessus mentioned this issue Apr 18, 2014
Closed
@tessus tessus mentioned this issue Nov 10, 2017
Closed
@lock lock bot locked as resolved and limited conversation to collaborators Aug 18, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
Type:Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@tessus @Supermathie @karlitschek @LukasReschke @jancborchardt