[Trac-tickets] [The Trac Project] #2030: Incorrect permission &
session handling when disabling anonymous user access
The Trac Project
noreply at edgewall.com
Thu Sep 8 14:08:05 CDT 2005
#2030: Incorrect permission & session handling when disabling anonymous user
access
--------------------------------+-------------------------------------------
Reporter: peter at kravtsov.net | Owner: jonas
Type: defect | Status: new
Priority: normal | Milestone:
Component: general | Version: 0.8.4
Severity: normal | Keywords: |
--------------------------------+-------------------------------------------
We have disabled/removed all anonymous trac permissions.
As a result, nobody could login.
The login information was being verified, however, the page acted as if no
one was logged in and upon every refresh a new session id was created.
Our tickets contain sensitive information and the system was designed for
internal use only; thus we disabled all anon permissions. This prevented
*all* users from logging in and using the system.
I have tried restarting apache a few times. I upgraded to 0.8.4 from 0.8.1
with no luck.
--
Ticket URL: <http://projects.edgewall.com/trac/ticket/2030>
The Trac Project <http://trac.edgewall.com/>
More information about the Trac-Tickets
mailing list