Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-6768

Deleting users from admin UI does not work with CSRF protection

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.6 RC1, 2.6 RC2, 2.6, 2.7 RC1, 2.7, 2.6.1, 3.0 M1, 3.0 M2, 2.6.2, 2.7.1, 3.0 M3, 3.0 RC1, 3.0, 3.1 M1, 2.7.2, 3.1 M2, 3.1 RC1, 3.1
    • Fix Version/s: 3.2 M1, 3.1.1
    • Component/s: Administration
    • Labels:
      None
    • Tests:
      Integration
    • Difficulty:
      Trivial
    • Similar issues:

      Description

      To reproduce:

      • enable CSRF protection
      • log in as Admin
      • go to "Administration » Users & Groups » Users"
      • try to delete some user

      The user disappears from the table, but is not deleted and shows up again on reload.

      This is a regression introduced in XAADMINISTRATION-171

        Attachments

          Activity

            People

            • Assignee:
              nickless Alex Busenius
              Reporter:
              nickless Alex Busenius
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: