Context Navigation

Modify ↓

#4024 closed defect (wontfix)

Trac-admin fails to hotcopy without write permession

Reported by:	jlisee	Owned by:	Christopher Lenz
Priority:	low	Milestone:
Component:	admin/console	Version:	0.9.3
Severity:	minor	Keywords:
Cc:		Branch:
Release Notes:
API Changes:
Internal Changes:

Description

Issue

If you have logging enabled and a user who just has read access to the project attempts a hotcopy, trac/scripts/admin.py attempts to create an Environment object which accesses the log. The requires write access to log file which of course the user does not have. A quick examination of the trunk reveals the same behavior.

Possible Solutions

There could be a —no-log option added to the hotcopy command that set the config file options such that not logging will be performed before the hotcopy and then restores them afterwards.
Slightly harder but not user action required there could be an os call to determine whether user has write access to the log file. If they don't have write access apply the method above to suppress the error.

Problems Issues

I am not sure if this runs counter to the reason for logging. With this option users could be silently duplicated the trac environment. Although they can do this already through the standard unix 'cp' command. Which won't be recored in the log at all.

Attachments (0)

Change History (1)

comment:1 by Emmanuel Blot, 18 years ago

Resolution:	→ wontfix
Status:	new → closed

If you want to run admin tasks without admin rights, use syslog instead of a log file to avoid this kind of troubles.

Modify Ticket

Change Properties

Summary:
Description:	== Issue == If you have logging enabled and a user who just has read access to the project attempts a hotcopy, trac/scripts/admin.py attempts to create an Environment object which accesses the log. The requires write access to log file which of course the user does not have. A quick examination of the trunk reveals the same behavior. == Possible Solutions == * There could be a --no-log option added to the hotcopy command that set the config file options such that not logging will be performed before the hotcopy and then restores them afterwards. * Slightly harder but not user action required there could be an os call to determine whether user has write access to the log file. If they don't have write access apply the method above to suppress the error. == Problems Issues == I am not sure if this runs counter to the reason for logging. With this option users could be silently duplicated the trac environment. Although they can do this already through the standard unix 'cp' command. Which won't be recored in the log at all. You may use WikiFormatting here.
Type:		Priority:
Milestone:		Component:
Version:		Severity:
Keywords:		Cc:	Set your email in Preferences
Branch:
Release Notes:
API Changes:
Internal Changes:

Action

leave as closed The owner will remain Christopher Lenz.

reopen The resolution will be deleted. Next status will be 'reopened'.

change ownership to The owner will be changed from Christopher Lenz to the specified user.

Add Comment

Your email or username:

E-mail address and name can be saved in the Preferences .

You may use WikiFormatting here.

Attachments ↑ Description ↑

Note: See TracTickets for help on using tickets.

Download in other formats: