Issue 1177057: Prevent anon users registering via email, allow via web - Roundup tracker

classification

Title:	Prevent anon users registering via email, allow via web
Type:		Severity:	normal
Components:	Mail interface	Versions:

process

Status:	closed	Resolution:	fixed
Dependencies		Superseder:
Assigned To:	richard	Nosy List:	jouni, richard
Priority:	normal	Keywords:

Created on 2005-04-05 13:37 by jouni, last changed 2005-04-13 03:24 by richard.

Files
File name	Uploaded	Description	Edit	Remove
roundup-0.8.2-anonemailaccess.patch	jouni, 2005-04-05 13:37	unidiff against 0.8.2

Messages
msg1925	Author: [hidden] (jouni)	Date: 2005-04-05 13:37
In 0.8.2, despite removing the permission db.security.addPermissionToRole('Anonymous', 'Email Access') it is possible for the anonymous user to access the tracker, if the Create User permission is not removed (and removing it prevents registration via the web interface); see http://thread.gmane.org/gmane.comp.bug-tracking.roundup.user/5194 The attached patch seems to fix this.
msg1926	Author: [hidden] (richard)	Date: 2005-04-13 03:24
Logged In: YES user_id=6405 Thanks!

History
Date	User	Action	Args
2005-04-05 13:37:11	jouni	create