Don't allow the administrator to lock himself out by setting emailregexp

RESOLVED WORKSFORME

Status

()

Bugzilla
Administration
--
enhancement
RESOLVED WORKSFORME
15 years ago
4 years ago

People

(Reporter: Jouni Heikniemi, Unassigned)

Tracking

Details

(Reporter)

Description

15 years ago
Per discussion in mozilla-webtools, it might be a good idea to do something
about administrators locking themselves out of Bugzilla by setting emailregexp
to something their own account doesn't match. 

There are two avenues: 1) allow people in admin group to login regardless of
regexp restrictions and 2) don't allow admins to set the emailregexp to
something the current account doesn't match.

The problem with no 2 is that it makes it harder to do an incompatible change of
email address policy (leave out domains for example), because the admin can't
change it unless his address matches the new form, and he can't make it match
new form if it's not permitted by the old one. The solution is to intermediately
use a regexp that allows both forms, of course, but that's a bit painful.

Updated

15 years ago
Severity: minor → enhancement
Reassigning bugs that I'm not actively working on to the default component owner
in order to try to make some sanity out of my personal buglist.  This doesn't
mean the bug isn't being dealt with, just that I'm not the one doing it.  If you
are dealing with this bug, please assign it to yourself.
Assignee: justdave → administration
QA Contact: mattyt-bugzilla → default-qa
I'm pretty sure we don't now check emailregexp at login time, if we ever did.

Gerv
Status: NEW → RESOLVED
Last Resolved: 4 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.