[#33064] - [4] msg: You cannot add or remove authenticators on behalf of users
- Fixed in Code Base
- 19 Apr 2021
- Medium
- Build: 4.0-dev
- # 33064
- Diff
- PhilETaylor:webauthnwarning
User tests: Successful: Unsuccessful:
Pull Request for Issue #33056
Summary of Changes
Provide feedback for a legitimate gotcha.
Admin A should not be able to add authenticators for user B.
Testing Instructions
Login as Admin A on a https:// site.
Edit User B with intention of adding an authenticators
Actual result BEFORE applying this Pull Request
No button to add an authenticator
No feedback why
Confusion as evidenced in #33056
Expected result AFTER applying this Pull Request
Documentation Changes Required
None.
// @nikosdion might be able to provide the link to the exact reason he added this reasonable requirement, IIRC it was a WebAuthn standard thing? I might remember wrong.
// @Dr-Sommer for testing.
// @brianteeman to make my English Joomlafied.
| Status | New | ⇒ | Pending |
joomla-cms-bot
- | Category | ⇒ | Administration Language & Strings Layout |
Please close it. there is nothing left
| Labels |
Added:
?
?
|
||
I have tested this item
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/33064.
I have tested this item
Displays error message when it's not the logged in user's settings being viewed.
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/33064.
| Status | Pending | ⇒ | Ready to Commit |
RTC
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/33064.
rdeutz
- | Status | Ready to Commit | ⇒ | Fixed in Code Base |
| Closed_Date | 0000-00-00 00:00:00 | ⇒ | 2021-04-19 06:24:11 |
| Closed_By | ⇒ | rdeutz | |
| Labels |
Added:
?
|
||
Can issue #33056 be closed because this PR here solves it completely? Or is there something remaining so it should stay open?