Comment 3 for bug 1287219
Revision history for this message
| Adam Young (ayoung) wrote Re: domain IDs should not be editable | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
The problem is that that a userid is associated with a domain, and that should not be editable. That is a security issue regardless.
In addition, only a domain admin should be able to assign roles for things inside their domains. Role assignments are owned by the assignment domain, not the identity domain