Issues
- Hiding and enabling Dropbox gives full set of permissions to non-maintainer rolesSAK-46236Resolved issue: SAK-46236
- Upgrade high priority tools to work with dark modeSAK-45018Resolved issue: SAK-45018Michael Greene
- Property to remove disable tool optionSAK-43080
- Cannot rename a tool on iPadSAK-33704Core Team
- Stack trace when enabling/disabling a tool that has a functions.require with setsSAK-33702Matthew Buckett
- Tool Order: New keyboard shortcuts block use of "U" and "D" when renaming a toolSAK-33698Resolved issue: SAK-33698Tiffany Stull
- Display Locked icon in course menu when tool has been locked via Site Info > Tool OrderSAK-33697Core Team
- Tools with site.upd in functions.require can't be unhidden in Page OrderSAK-33631Resolved issue: SAK-33631Core Team
- Remove CSS that breaks bootstrap classes in Site InfoSAK-33573Resolved issue: SAK-33573Matthew Buckett
- Can no longer disable Gradebook NG (and other tools) in Page OrderSAK-33454Resolved issue: SAK-33454Core Team
- Cancel button doesn't cancel the "make visible/invisible" actionSAK-33423Core Team
- Fix run-on sentence in page order helper warning.SAK-33298Resolved issue: SAK-33298Matthew Buckett
- Tool Order is no longer sortable with a mouseSAK-33277Resolved issue: SAK-33277Matthew Jones
- Tool Order - Dynamic list toggling not working as expectedSAK-33243Resolved issue: SAK-33243Sam Ottenhoff
- Better fix for off page dropdown.SAK-32709Resolved issue: SAK-32709Matthew Buckett
- Tool Order - Cannot access keyboard reordering via tabbingSAK-32654Resolved issue: SAK-32654Sam Ottenhoff
- Unused code in Page order helperSAK-32162Resolved issue: SAK-32162Matthew Buckett
- Hiding/unhiding "Site Info" in Tool Order leads to blank pageSAK-31345Resolved issue: SAK-31345Sristi
- Locked/Hidden Tool Status in Left Tool MenuSAK-30315Resolved issue: SAK-30315chaithanya noti
- the tool order page (nee Page Order) is poorly formatted on a mobile phone screen in portrait modeSAK-30292Resolved issue: SAK-30292Alejandro González Jiménez
- UI improvements to Page Order pageSAK-30171Resolved issue: SAK-30171Core Team
- Page order Morpheus alignment offSAK-29202Resolved issue: SAK-29202Core Team
- Document configuration poh.unhideablesSAK-29146Resolved issue: SAK-29146Matthew Buckett
- Don't allow some page titles to be changedSAK-29145Resolved issue: SAK-29145Core Team
- Allow lock and hidden to be disabled.SAK-29144Resolved issue: SAK-29144Matthew Buckett
- PageOrderHelper should have a warning message about its scopeSAK-29104Resolved issue: SAK-29104Daniel Merino
- Fix default RSF text in pageorderSAK-28185Resolved issue: SAK-28185Matthew Jones
- Allow for disabling page order feature of page order helperSAK-27809Resolved issue: SAK-27809Matthew Jones
- Page Order Helper Tool redirects to a blank page after clicking SAVE ButtonSAK-26368Resolved issue: SAK-26368Zhen Qian
- Page order tool can lose all tools in siteSAK-26100Resolved issue: SAK-26100Core Team
- Change the unlocked icon to be more identifiableSAK-23794Resolved issue: SAK-23794Core Team
- When an unsaved orderings in PageOrderHelper attempt to navigate away with out saving, it does not prompt a warning message.SAK-22728Resolved issue: SAK-22728Core Team
- Page Order tool allows adding of tools to a site that are not appropriate for the site typeSAK-21395Resolved issue: SAK-21395Steve Swinsburg
- Light bulb in page order jumps around when one tries to click it using Chrome 15SAK-21388Resolved issue: SAK-21388Core Team
- Rewrite Page Order to use Fluid reorderingSAK-20983Resolved issue: SAK-20983Sam Ottenhoff
- Get rid of warning when building assembliesSAK-20938Resolved issue: SAK-20938
- Prep site-manage project for off-cycle releases.SAK-20886Resolved issue: SAK-20886Anthony Whyte
- Order pages alphabeticallySAK-20680Resolved issue: SAK-20680Sam Ottenhoff
- Page title with accentsSAK-20595Resolved issue: SAK-20595Core Team
- Multiple Tools Permissions , Page OrderSAK-19987Resolved issue: SAK-19987
- Miscommunication between Web Content tool and Page OrderSAK-19986Resolved issue: SAK-19986
- Page Order FeaturesSAK-19985Resolved issue: SAK-19985
- Cannot change the name of 'home' in Page OrderSAK-19984Resolved issue: SAK-19984
- Unused i18n keys in site-manage's pageorder/tool/src/bundle/org/sakaiproject/tool/pageorder/bundle/Messages.propertiesSAK-19576Resolved issue: SAK-19576Zhen Qian
- Ability to hide individual tools on a pageSAK-18126Resolved issue: SAK-18126
- Page order tool doesn't work.SAK-18014Resolved issue: SAK-18014Gonzalo Silverio
- remove references to jquery-1.1.2.js from page order helperSAK-17946Resolved issue: SAK-17946Gonzalo Silverio
- remove references to jquery-1.1.2.jsSAK-17944Resolved issue: SAK-17944Gonzalo Silverio
- Page Order button labels (Save, Cancel, Reset) not localized with RSF templateSAK-17338Resolved issue: SAK-17338Matthew Jones
- Concurrence problems with description in Site InfoSAK-16879Resolved issue: SAK-16879Core Team
50 of 107
Hiding and enabling Dropbox gives full set of permissions to non-maintainer roles
Fixed
GENERAL
TESTING
GENERAL
TESTING
Description
Attachments
1
is duplicated by
is related to
Created September 14, 2021 at 5:53 AM
Updated February 1, 2022 at 12:12 AM
Resolved October 7, 2021 at 8:45 AM
Activity
AustinJanuary 31, 2022 at 6:36 PM
Also we have about 2000 records where the realm is set to a dropbox function_key with a function_name of
”dropbox.own | dropbox.maintain | dropbox.maintain.own.groups”
is that normal? should we delete the sakai_realm_rl_fn records using that function? should we delete that function key from sakai_realm_function?
AustinJanuary 31, 2022 at 6:18 PMEdited
sorry, about that. I didn’t see your first comment because of the new look of the “view 11 remaining older comments” button
Thanks!
Daniel MerinoJanuary 31, 2022 at 9:08 AM
The MySql query I talked about is in the first comment that I wrote in September 14th in this JIRA. After it, you have the Oracle version of my query from Brian Jones.
Maybe the last query of Marty Soupcoff is better though, I haven’t compared them.
Marty Soupcoff (not active in Sakai community anymore)January 29, 2022 at 3:15 PM
Sam created bulk of below query for us and then I tweaked a bit as needed. We set up on a cron and anytime it found one I’d manually go into realms and fix.
AustinJanuary 29, 2022 at 2:41 AM
I'm going to paste a query in the comments to detect incorrect permissions in database
Do you have this query? I also, have one (for the SELECT), but I’d like to compare it with what you came up with.
Do you also have one to delete the bad records? We’re no longer using the Admin Permissions tool since it was said on the sakai-dev forums that the performance is bad and a direct reply from another developer said to stop using it.
This issue wasn't happening in 20.1 but it is happening in 20.3 and 20.x. Just hiding and making visible the Dropbox tool gives to non-maintainer roles all permissions over Dropbox. Locking and unlocking the tool also does the same.
We suspect that this is related to the changes of SAK-43149, but we are still investigating.
I'm going to paste a query in the comments to detect incorrect permissions in database.