Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Invalid
Priority: Blocker
Fix Version/s: None
Affects Version/s: 14.3-rc-1
Component/s: Old Core
Labels:
- bugfixingday
- regression
Environment:
Windows 11 Pro 64 bit, Chrome 101, using a local instance of XWiki 14.3 on MariaDB 10.6, Tomcat 9.0.62, Java 17 (Oracle)

Difficulty:
Unknown
Documentation:
N/A
Documentation in Release Notes:
N/A
Similar issues:

Description

STEPS TO REPRODUCE

Login as Admin
Create a page and upload some attachments on it
Create an user (e.g. U1)
Login as Admin
Disable the user's account (from Administration or from the user's profile page)
Login with the user U1
In the upper right search box, search for the previously uploaded attachments' names
Click on the suggestions

EXPECTED RESULTS

As the user's account is currently disabled, no search suggestions are displayed when searching.

ACTUAL RESULTS

The uploaded attachments are displayed as suggestions and they can be accessed/viewed by the disabled users, or downloaded.

The issue couldn't be reproduced on XWiki 14.2.1, where the search suggestions are not displayed at all (instead there was a spinning wheel and an error message at the bottom of the page: Failed to retrieve suggestions: Forbidden).

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Disabled_Search_14_2_1.png
05/May/22 13:25
52 kB
Ilie Andriuta
Disabled_Search_14_3.png
05/May/22 13:25
43 kB
Ilie Andriuta

Issue Links

relates to

XWIKI-19559 The fact that a user is inactive is far from being taken into account everywhere

Closed

XWIKI-19698 Disabled users should have access to pages content as guest users do but with a warning that their account is disabled

Open

Activity

People

Assignee:: Simon Urli

Reporter:: Ilie Andriuta

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 05/May/22 13:29

Updated:: 05/May/22 15:05

Resolved:: 05/May/22 14:59

Date of First Response:: 05/May/22 2:59 PM