Actions
Bug #6088
closed
RADIUS WebUI - Deny Config Write is not honored
Start date:
04/07/2016
Due date:
% Done:
100%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
Description
After authenticating with a user that has been put into a group with "Deny Config Write" it is not enforced. If you create a local user in that same group it is enforced as expected.
Updated by Phillip Hernandez over 8 years ago
For clarity, when the user is authenticated with RADIUS and the deny config write is set it is not enforced.
Updated by Jim Pingle over 8 years ago
- Status changed from New to Assigned
- Assignee set to Jim Pingle
- Target version set to 2.3
- Affected Version set to 2.3
Confirmed, working on a fix now.
Updated by Jim Pingle over 8 years ago
- Target version changed from 2.3 to 2.3.1
Looking at the code, this is not a regression. It will be good to fix, but the fix is non-trivial so it's better to hold it back for the next point release.
Updated by Jim Pingle over 8 years ago
- Status changed from Assigned to Feedback
- % Done changed from 0 to 100
Applied in changeset 0ef6fddce9a48e7e1abac04c5dc59c0d7a99e83d.
Updated by Phillip Hernandez over 8 years ago
I wanted to confirm that this works. I created a custom patch to apply to my pfsense boxes that are running 2.2.6 and Deny Config Write is now honored.
Thanks
Updated by Jim Pingle over 8 years ago
- Status changed from Feedback to Resolved
Thanks for the additional testing
Updated by Chris Buechler over 8 years ago
- Affected Version changed from 2.3 to All
Actions