[CWD-1720] Crowd Clients may delete Crowd administrators, to the point where there are no Crowd administrators

Type: Suggestion
Resolution: Won't Fix
Fix Version/s: None
Component/s: Authentication / Security, Core features
Labels:
- dragons
Environment:
Operating System: CentOS 5.3, x86-32
JDK: Sun JDK 1.6 6u16 32bit
PostgreSQL Server: 8.3.8-1 32bit
PostgreSQL JDBC: 8.4-701

Browser: Mozilla Firefox 3.5.3 on Mac OS X 10.6 Snow Leopard

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

A Crowd client, such as confluence; can delete users from Crowd. This includes the Admin users, regardless of what groups these admin users are in.

Once all the admin users are deleted, you can no longer administer Crowd.

is detailed by

CWD-1182 Do not allow actions that will lock out admin access

Closed

Ivan added a comment - 06/Apr/2011 7:24 AM

I deleted almost all the groups from JIRA admin, including the crowd-administrators group, what SQLs I can run to recover it?

Don't want to re-configure all the applications...

Ivan added a comment - 06/Apr/2011 7:24 AM I deleted almost all the groups from JIRA admin, including the crowd-administrators group, what SQLs I can run to recover it? Don't want to re-configure all the applications...

PdZ (Inactive) added a comment - 12/Nov/2009 10:37 PM

That is a good suggestion. But this doesn't assist with users who have followed our Dragons documentation.

PdZ (Inactive) added a comment - 12/Nov/2009 10:37 PM That is a good suggestion. But this doesn't assist with users who have followed our Dragons documentation.

Justin Koke added a comment - 12/Nov/2009 10:13 PM

Marking this as won't fix for the moment, since we cannot control how clients talk with Crowd.

I would strongly suggest that users create an internal directory just for accessing the Crowd Console, keep this directory locked down and non-visible to other applications.

Justin Koke added a comment - 12/Nov/2009 10:13 PM Marking this as won't fix for the moment, since we cannot control how clients talk with Crowd. I would strongly suggest that users create an internal directory just for accessing the Crowd Console, keep this directory locked down and non-visible to other applications.

Assignee:: Unassigned

Reporter:: PdZ (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 01/Oct/2009 7:51 AM

Updated:: 19/Sep/2019 5:51 AM

Resolved:: 12/Nov/2009 10:13 PM

Details

Description

Attachments

Issue Links

Forms

Activity

Collapse comment: Ivan added a comment - 06/Apr/2011 7:24 AM

Expand comment: Ivan added a comment - 06/Apr/2011 7:24 AM

Collapse comment: PdZ (Inactive) added a comment - 12/Nov/2009 10:37 PM

Expand comment: PdZ (Inactive) added a comment - 12/Nov/2009 10:37 PM

Collapse comment: Justin Koke added a comment - 12/Nov/2009 10:13 PM

Expand comment: Justin Koke added a comment - 12/Nov/2009 10:13 PM

People

Dates