oqtane.framework icon indicating copy to clipboard operation
oqtane.framework copied to clipboard

Published 20 hours ago verified publisher icon oqtane

[BUG] - When a user has a role that has a expiry date that is not Valid (i.e. in the past) it is still authorised for that role

Open vnetonline opened this issue 9 months ago • 6 comments

Oqtane Info

Version - 5.1.2 (dev Branch) Render Mode - Static Interactivity - Server Database - SQL Server

Describe the bug

  • When a user has a role that has a expiry date that is not Valid (i.e. in the past) it is still authorised for that role

Expected Behavior

  • The user should not be authorised if the user has a role which has expired

Steps To Reproduce

  1. Add a role and set the expiry date to yesterday
  2. Add that role to a user
  3. Add HTML module and set its permission to view and edit to that specific role
  4. Log in as the user assigned that role, and you will still be able to view and edit the HTML Module

Anything else?

vnetonline avatar May 24 '24 02:05 vnetonline