4 Replies Latest reply on Jan 17, 2006 9:50 PM by Anson Smith

    Security Question on User Portlet

    Alexander Grünewald Newbie

      Hi Developers and Community,

      i tested JBoss Portal 2.2. I created a new account and logged in. Then i recognized that i could change the profiles of other users using the User Portlets "List of all users"-page. So it was possible to change the password of the administrator for instance. Is there a way to prevent portal users from doing so? Is it possibly a bug?

      Thanks,
      Alexander