Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

enable "unauthenticated users" role in the list. #4095

Merged
merged 4 commits into from
Oct 1, 2020
Merged

enable "unauthenticated users" role in the list. #4095

merged 4 commits into from
Oct 1, 2020

Conversation

zyhfish
Copy link
Contributor

@zyhfish zyhfish commented Sep 18, 2020

Fix #4094

mitchelsellers
mitchelsellers requested changes Sep 18, 2020
View reviewed changes
Copy link
Contributor

@mitchelsellers mitchelsellers left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree with all of the feedback provided by @bdukes and additionally want to call to attention a testing concern here.

Looking back historically it seems that this has been an issue since the inception of the PersonaBar. The current workaround to add/remove those users is to use a combination of "All Users" and "Registered Users" with approve/deny.

Have we tested the downstream processes, after setting these values in this manner that all security at the page level is still working as intended?

@sleupold
Copy link
Contributor

I know, it is a big change, but ideally, We should replace "Unauthenticated Users, "unverified Users" and "registered Users roles together with "autoorized" and "deleted" by asaingle workflow state.

@bdukes bdukes added this to the 9.8.0 milestone Sep 24, 2020
bdukes
bdukes reviewed Sep 25, 2020
View reviewed changes
Dnn.AdminExperience/Library/Dnn.PersonaBar.UI/Services/ComponentsController.cs Outdated
@@ -33,6 +36,8 @@ public class ComponentsController : PersonaBarApiController

public string LocalResourcesFile => Path.Combine("~/DesktopModules/admin/Dnn.PersonaBar/App_LocalResources/SharedResources.resx");

private int UnauthUserRoleId => int.Parse(Globals.glbRoleUnauthUser, CultureInfo.InvariantCulture);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
private int UnauthUserRoleId => int.Parse(Globals.glbRoleUnauthUser, CultureInfo.InvariantCulture);
private static readonly int UnauthUserRoleId => int.Parse(Globals.glbRoleUnauthUser, CultureInfo.InvariantCulture);

bdukes
bdukes approved these changes Sep 25, 2020
View reviewed changes
Copy link
Contributor

@bdukes bdukes left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A couple of nits, but nothing showstopping now 👍🏻 Thanks!

@mitchelsellers @bdukes
Update Dnn.AdminExperience/Library/Dnn.PersonaBar.UI/Services/Compone…
8c867e0 
…ntsController.cs


explciit -1

Co-authored-by: Brian Dukes <bdukes@engagesoftware.com>
@bdukes bdukes modified the milestones: 9.8.0, 9.7.3 Oct 1, 2020
@bdukes bdukes merged commit 4522f22 into dnnsoftware:develop Oct 1, 2020
@valadas valadas modified the milestones: 9.7.3, 9.8.0 Oct 7, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sleupold sleupold sleupold left review comments

@mitchelsellers mitchelsellers mitchelsellers approved these changes

@bdukes bdukes bdukes approved these changes

Assignees
No one assigned
Labels
Type: Bug
Projects
None yet
Milestone
9.8.0
Development

Successfully merging this pull request may close these issues.

can't set page permissions for "unauthentication users" role
5 participants
@zyhfish @sleupold @bdukes @mitchelsellers @valadas