[PARTIALLY_SOLVED] User is logged out without explanation

Bugs Solved Bugs
1

I’m submitting a…

  • [ ] Regression (a behavior that stopped working in a new release)
  • [x] Bug report
  • [ ] Performance issue
  • [ ] Documentation issue or request

Current behavior

When logged in as a user with lower privileges, some menu options still appear in the GUI. Clicking these will cause user to be logged out without any explanation or warning.

Expected behavior

Ideally, the user should not even see the menu options he/she does not have access to. Alternatively, a prompt should appear telling the user why he/she cannot open the selected menu item. Last resort would be to log out the user with a message on the login page, I suppose.

Minimal reproduction of the problem

  • Log in as a “Developer”
  • Click “Workflows” menu option under “Settings”
  • You are now logged out

Environment

  • [x] Self hosted with docker
  • [ ] Self hosted with IIS
  • [ ] Self hosted with other version
  • [x] Cloud version

Version: 3.4.0

Browser:

  • [x] Chrome (desktop)
  • [ ] Chrome (Android)
  • [ ] Chrome (iOS)
  • [ ] Firefox
  • [ ] Safari (desktop)
  • [ ] Safari (iOS)
  • [ ] IE
  • [ ] Edge

Others:

2

You are true, it might be better to show a error page. The problem is that you need the permission to read the roles as well.

I think I have to update the roles system to provide defaults that are not stored in the db so that I can fix it later.

1 Like
3

PR for the forbidden page is on its way. I will have a look to solve the problem for default roles later.

4