search

google-code-export / webpasswordsafe

Automatically exported from code.google.com/p/webpasswordsafe
0 stars 3 forks source link

Passwords with no permissions can be saved but not opened #40

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Add/Update a password removing all of its permissions.
2. Search for the password and it will never be returned in the search results 
(which might make sense) not even for an admin user with bypass permissions 
role (which does NOT make sense).

What is the expected output? What do you see instead?
1. The password should still be returned for anyone with bypass permissions 
role, so that valid permissions can be added again.
2. Even better, don't allow passwords with zero permissions to be saved in the 
first place, from a business logic point of view that just doesn't make sense, 
should always require at least one permission.

Original issue reported on code.google.com by joshdrum...@gmail.com on 1 Jun 2011 at 12:46

GoogleCodeExporter commented 9 years ago

Original comment by joshdrum...@gmail.com on 6 Jun 2011 at 5:39