Bug #25358 for CAS: read-only user objects

RT for rt.cpan.org

This queue is for tickets about the CAS CPAN distribution.

Report information

The Basics

Id:	25358
Status:	open
Estimated:	5 hours (300 min)
Priority:	4/10
Queue:	CAS

People

Owner:	SEANQ [...] cpan.org
Requestors:	SEANQ [...] cpan.org
Cc:
AdminCc:

Bug Information

Severity:	Normal
Broken in:	0.88
Fixed in:	(no value)

History Show all quoted text

Fri Mar 09 17:51:21 2007 SEANQ [...] cpan.org - Ticket created

Subject:

read-only user objects

User objects created outside of the admin package should probably be read-only. Currently all user objects have access to the save method. Even if no real security is added to prevent any code using CAS from accessing the admin package (when it exists), it would still be safer if user objects could not be modified unless created explicitly for that purpose.

Fri Mar 09 17:52:44 2007 SEANQ [...] cpan.org - TimeEstimated changed from (no value) to '300'

Fri Mar 09 17:52:44 2007 SEANQ [...] cpan.org - Status changed from 'new' to 'open'

Fri Mar 09 17:52:45 2007 SEANQ [...] cpan.org - Severity Important changed to Normal

Fri Mar 09 20:07:00 2007 SEANQ [...] cpan.org - FinalPriority changed from (no value) to '10'

Fri Mar 09 20:07:00 2007 SEANQ [...] cpan.org - Priority changed from (no value) to '4'