Closed mtippmann closed 8 years ago
Phase one of the fix has been committed with https://dev.openwrt.org/changeset/47816 - this corrects the permission handling of ubus which led to this regression in the first place.
Phase two will switch the current root ubus connection to the less privileged user context and install a proper ACL definition but I defer this change for now since it would cause the unpatched OpenWrt ubusd (prior to r47816) to segfault.
We do face the same problem. Is there a workaround until Jow enters his Phase II ?
Greetings Thomas
Please see if 81e80c4b876e8e68bb8b022c39d0941e2c1ccb56 solves your issue.
Perfecto ... thx Jow ... all working now in Luci
Thanks for testing!
Problem goes away if you give ubus more privs - this is the default and doesn't work:
looks like ubus calls are executed in a different way and need explizit access rights.
to reproduce goto
http://<routerip>/cgi-bin/luci//freifunk/index
without beeing logged in.if I give more permissions in unauthenticated.json it works for me.