Bug 49379

GemStone/S 64 Bit

3.6

3.6.1

DataCurator permission error on addPerformOnServerCommand: in upgraded repository

A feature was added in v3.6, that allowed specific command paths to be allowed for a UserProfile that had the NoPerformOnServer inverse privilege. This feature required adding an instance variable to the UserSecurityData class, which holds sensitive information and can only be viewed or modified by SystemUser.

However, instance of UserSecurityData were not explicitly migrated during the upgrade process.  While these instance will auto-migrate, since they are not accessible to DataCurator, they cannot be auto-migrated by DataCurator.

If DataCurator attempted to add a path to the white list for a UserProfile in an upgraded repository, this resulted in a permission error.

Workaround

Login as SystemUser to perform the addPerformOnServerCommand:.  After the UserSecurityData is auto-migrated, DataCurator can maintain the list.


                

Last updated: 2/12/21