Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-10926

Dashboard returns 401 when user loses permissions to repository recently pushed to

    XMLWordPrintable

    Details

      Description

      Summary

      Bitbucket Server returns a 401 ("You are not permitted to view this page" error) on the dashboard when a user has recent pushes to repositories they no longer have access to.

      Steps to reproduce

      1. Create a user (not a system admin) and give it permissions to a particular repository (or project)
      2. Push to the repository as that user
      3. Revoke permissions for the repository (or project) for this user
      4. View the dashboard page

      Expected

      Dashboard page loads correctly, with the recent pushes to the repository that the user no longer has access to filtered out.

      Actual

      The dashboard page does not load correctly (a 401 error page is returned). Note that if you remain on the dashboard while permissions are revoked, the XHR request to pull request suggestions will throw a 401, but the page will still work.

        Attachments

          Activity

            People

            Assignee:
            spetrucev Stefan
            Reporter:
            voseghale VICTOR-OSEGHALE (Inactive)
            Votes:
            5 Vote for this issue
            Watchers:
            7 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: